GO-2024-2746 — Vulnetix

GO-2024-2746 PUBLISHED

Kubernetes allows bypassing mountable secrets policy imposed by the ServiceAccount admission plugin in k8s.io/kubernetes

Affected Products

Vendor	Product	Versions
k8s.io	kubernetes	0, 1.28.0, 1.29.0

Timeline

Jun 4, 2024 CVE Published
Feb 4, 2026 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›