CVE-2023-3955

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-3955

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3955.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-3955

Aliases

Downstream

DEBIAN-CVE-2023-3955

openSUSE-SU-2024:14599-1

Related

Published

2023-10-31T21:15:08.613Z

Modified

2026-02-11T01:50:02.711161Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.

References

Affected packages

Git / github.com/kubernetes/kubelet

Affected ranges

Type: GIT
Repo: https://github.com/kubernetes/kubelet
Events: Introduced

bc4c2f36af4e19e04b0d09b6fe4d101916a504fb

Fixed

10dd04e1a6627ca44118059c16d9b4aa64492918

Introduced

d37f045d808033445aaa284ad80454c948b37958

Fixed

13ac7af26da6189832297d78b2e9a6c75ab4ae5f

Fixed

2535c48bc9b3b2e68ea2812f3a82ac889cede1a3

Introduced

202e223fff3b2425eb941c13ff02e10b8e11a568

Fixed

a1decd7b5f0c274ed3708a7171b6053fcd937cad

Introduced

64c8471fa33c114d66df8f2efc02789f07449c63

Fixed

dc5331fd4f6ffed03e5c81a6159aa90478f2e080

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3955.json"