Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
NVIDIA AIStore contains a vulnerability in the AIS Operator where a user may gain elevated k8s cluster access by using the ServiceAccount attached to the ClusterRole. A successful exploit of this vulnerability may lead to information disclosure.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Vulnerability Type
特权授予不正确
Vulnerability Title
NVIDIA AIStore 安全漏洞
Vulnerability Description
NVIDIA AIStore是美国英伟达(NVIDIA)公司的一款为AI应用设计的轻量级存储堆栈。 NVIDIA AIStore存在安全漏洞,该漏洞源于AIS Operator可能允许用户通过ServiceAccount提升k8s集群访问权限,可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A