CVE-2017-1000056
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000056
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000056.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-1000056
- Aliases
- Published
- 2017-07-17T13:18:17Z
- Modified
- 2024-12-10T16:52:01.283746Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.
- References
Affected packages
Debian:11 / kubernetes
Package
- Name
- kubernetes
- Purl
- pkg:deb/debian/kubernetes?arch=source
Debian:12 / kubernetes
Package
- Name
- kubernetes
- Purl
- pkg:deb/debian/kubernetes?arch=source
Git / github.com/kubernetes/kubernetes
Affected ranges
- Type
- GIT
- Repo
- https://github.com/kubernetes/kubernetes
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affectedLast affectedLast affected
Affected versions
v0.*
v0.10.0
v0.11.0
v0.12.0
v0.13.0
v0.13.1-dev
v0.14.0
v0.14.1
v0.15.0
v0.16.0
v0.16.1
v0.16.2
v0.17.0
v0.17.1
v0.18.0
v0.18.1
v0.18.2
v0.19.0
v0.19.1
v0.19.2
v0.19.3
v0.2
v0.20.0
v0.20.1
v0.20.2
v0.21.0
v0.21.1
v0.21.2
v0.3
v0.4
v0.5
v0.6.0
v0.7.0
v0.8.0
v0.9.0
v1.*
v1.0.0
v1.1.0-alpha.0
v1.1.0-alpha.1
v1.2.0-alpha.1
v1.2.0-alpha.2
v1.2.0-alpha.3
v1.2.0-alpha.4
v1.2.0-alpha.5
v1.2.0-alpha.6
v1.2.0-alpha.7
v1.2.0-alpha.8
v1.3.0-alpha.0
v1.3.0-alpha.1
v1.3.0-alpha.2
v1.3.0-alpha.3
v1.3.0-alpha.4
v1.3.0-alpha.5
v1.4.0-alpha.0
v1.4.0-alpha.1
v1.4.0-alpha.2
v1.4.0-alpha.3
v1.5.0
v1.5.0-alpha.0
v1.5.0-alpha.1
v1.5.0-alpha.2
v1.5.0-beta.0
v1.5.0-beta.1
v1.5.0-beta.2
v1.5.0-beta.3
v1.5.1
v1.5.1-beta.0
v1.5.2
v1.5.2-beta.0
v1.5.3
v1.5.3-beta.0
v1.6.0-alpha.0