Title:Red Hat OpenShift Container Platform 安全漏洞 (CVE-2024-7387) Description:Red Hat OpenShift Container Platform是美国红帽(Red Hat)公司的一套可帮助企业在物理、虚拟和公共云基础架构之间开发、部署和管理现有基于容器的应用程序的应用平台。 Red Hat OpenShift Container Platform 4存在安全漏洞,该漏洞源于openshift/builder允许通过路径穿越进行命令注入,恶意用户可以在运行构建器容器的OpenShift节点上执行任意命令。
Description
poc for path traversal allowing privilege escalation from developer to worker node
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.