Vulnerability Database
Blog
FAQ
Docs
GO-2024-3080
See a problem?
Source
https://pkg.go.dev/vuln/GO-2024-3080
Import Source
https://vuln.go.dev/ID/GO-2024-3080.json
JSON Data
https://api.osv.dev/v1/vulns/GO-2024-3080
Aliases
CVE-2024-43403
GHSA-h27c-6xm3-mcqp
Published
2024-08-22T20:03:04Z
Modified
2024-08-22T20:27:09.770415Z
Summary
Kanister vulnerable to cluster-level privilege escalation in github.com/kanisterio/kanister
Details
Kanister vulnerable to cluster-level privilege escalation in github.com/kanisterio/kanister
References
https://github.com/kanisterio/kanister/security/advisories/GHSA-h27c-6xm3-mcqp
https://github.com/kanisterio/kanister/blob/master/helm/kanister-operator/templates/rbac.yaml#L49
https://github.com/kanisterio/kanister/wiki/2023%E2%80%9024-Community-Meeting-Notes
Affected packages
Go
/
github.com/kanisterio/kanister
Package
Name
github.com/kanisterio/kanister
View open source insights on deps.dev
Purl
pkg:golang/github.com/kanisterio/kanister
Affected ranges
Type
SEMVER
Events
Introduced
0
Unknown introduced version / All previous versions are affected
GO-2024-3080 - OSV