Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An insecure modification vulnerability flaw was found in containers using nmstate/kubernetes-nmstate-handler. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges. Versions before kubernetes-nmstate-handler-container-v2.3.0-30 are affected.
CVSS Information
N/A
Vulnerability Type
特权授予不正确
Vulnerability Title
Kubernetes 安全漏洞
Vulnerability Description
Kubernetes(K8s)是云原生计算基金会(Cloud Native Computing Foundation)的一个开源系统,用于自动部署、扩展和管理容器化应用程序。 Kubernetes存在安全漏洞,该漏洞源于使用kubernetes-nmstate-handler的容器中发现一个不安全的修改漏洞。攻击者可利用该漏洞来修改等密码,并升级他们的权限。
CVSS Information
N/A
Vulnerability Type
N/A