CVE-2024-10220 PoC — Kubernetes 安全漏洞

Source

https://github.com/mochizuki875/CVE-2024-10220-githooks

Associated Vulnerability

Title:Kubernetes 安全漏洞 (CVE-2024-10220)
Description:Kubernetes（K8s）是Kubernetes开源的一个开源系统，用于自动部署、扩展和管理容器化应用程序。 Kubernetes存在安全漏洞，该漏洞源于允许通过特制的 gitRepo 卷执行任意命令。以下版本受到影响：1.28.11版本及之前版本、1.29.0版本至1.29.6版本和1.30.0版本至1.30.2版本。

Description

CVE-2024-10220 Test repo

Readme

# CVE-2024-10220 Test
ref https://irsl.medium.com/sneaky-write-hook-git-clone-to-root-on-k8s-node-e38236205d54

File Snapshot


 [4.0K]  /data/pocs/33b587a6e169f123f6642199caab989a3f31944e
├── [  92]  config
├── [  23]  HEAD
├── [4.0K]  hooks
│   └── [  67]  post-checkout
├── [4.0K]  logs
│   ├── [ 155]  HEAD
│   └── [4.0K]  refs
│       └── [4.0K]  heads
│           └── [ 155]  master
├── [4.0K]  manifest
│   └── [ 535]  gitrepo.yaml
├── [4.0K]  objects
│   ├── [4.0K]  47
│   │   └── [  83]  a0c00b3d4c5ee89bde4493f2e9be760e5de553
│   ├── [4.0K]  51
│   │   └── [  92]  5f4836297fdf7567c066983c16e5eff598f7bd
│   ├── [4.0K]  7d
│   │   └── [ 125]  d14d0290b3fb7a4a45ea31e2e93b2b293f712e
│   ├── [4.0K]  95
│   │   └── [  58]  45f069ed6b142dd70e12a082ad786f530b1a37
│   ├── [4.0K]  af
│   │   └── [ 110]  600098238b7e234f440f9bd18fd370962ba2c2
│   └── [4.0K]  cb
│       └── [  37]  089cd89a7d7686d284d8761201649346b5aa1c
├── [ 110]  README.md
└── [4.0K]  refs
    └── [4.0K]  heads
        └── [  41]  master

14 directories, 14 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!