CVE-2019-11251

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-11251

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-11251.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-11251

Aliases

Related

Published

2020-02-03T16:15:11Z

Modified

2025-02-19T02:46:44.165410Z

Severity

5.7 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N CVSS Calculator

Summary

[none]

Details

The Kubernetes kubectl cp command in versions 1.1-1.12, and versions prior to 1.13.11, 1.14.7, and 1.15.4 allows a combination of two symlinks provided by tar output of a malicious container to place a file outside of the destination directory specified in the kubectl cp invocation. This could be used to allow an attacker to place a nefarious file using a symlink, outside of the destination tree.

References

Affected packages

Git / github.com/kubernetes/kubelet

Affected ranges

Type: GIT
Repo: https://github.com/kubernetes/kubelet
Events: Introduced

36ea738c771d6b8a50df632f092f5805818476c3

Fixed

8d84603a161b8760198ebdd6ba6f7af3e31cd0e8

Type: GIT
Repo: https://github.com/kubernetes/kubernetes
Events: Introduced

ddf47ac13c1a9483ea035a79cd7c10005ff21a6d

Fixed

25074a190ef2a07d8b0ed38734f2cb373edfb868

Affected versions

v1.*

v1.13.0

v1.13.1

v1.13.1-beta.0

v1.13.10

v1.13.10-beta.0

v1.13.11-beta.0

v1.13.2

v1.13.2-beta.0

v1.13.3

v1.13.3-beta.0

v1.13.4

v1.13.4-beta.0

v1.13.5

v1.13.5-beta.0

v1.13.6

v1.13.6-beta.0

v1.13.7

v1.13.7-beta.0

v1.13.8

v1.13.8-beta.0

v1.13.9

v1.13.9-beta.0