GHSA-2jx2-76rc-2v7v

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/05/GHSA-2jx2-76rc-2v7v/GHSA-2jx2-76rc-2v7v.json
Aliases
  • CVE-2017-1000056
Published
2021-05-12T18:16:32Z
Modified
2023-09-18T19:38:35Z
Details

Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.

References

Affected packages

Go / k8s.io/kubernetes

Source Details

Package Name
k8s.io/kubernetes

Affected ranges

Type
SEMVER
Events
Introduced
1.5.0
Fixed
1.5.5

Ecosystem specific

{
    "affected_functions": [
        ""
    ]
}