Vulnerability CVE-2023-3676: Information
Description
A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.
Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zc |
|
https://github.com/kubernetes/kubernetes/issues/119339 |
|
https://security.netapp.com/advisory/ntap-20231130-0007/ |