CVE-2019-11244
Description
In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the location specified by --cache-dir (defaulting to $HOME/.kube/http-cache), written with world-writeable permissions (rw-rw-rw-). If --cache-dir is specified and pointed at a different location accessible to other users/groups, the written files may be modified by other users/groups and disrupt the kubectl invocation.
Risk Information
Base Score
5.0
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.101
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Kubeadm update (ELSA-2019-4816) kubeadm-1.12.10-1.0.10.el7.x86_64.rpm | Linux |
| Kubeadm-ha-setup update (ELSA-2019-4816) kubeadm-ha-setup-0.0.2-1.0.68.el7.x86_64.rpm | Linux |
| Kubeadm-upgrade update (ELSA-2019-4816) kubeadm-upgrade-0.0.1-1.0.27.el7.x86_64.rpm | Linux |
| Kubectl update (ELSA-2019-4816) kubectl-1.12.10-1.0.10.el7.x86_64.rpm | Linux |
| Kubelet update (ELSA-2019-4816) kubelet-1.12.10-1.0.10.el7.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234