PT-2024-5025 · Unknown+2 · Kubernetes+2
Paulo Gomes
·
Published
2024-07-17
·
Updated
2025-08-08
·
CVE-2024-5321
CVSS v4.0
7.1
High
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions:
Kubernetes versions prior to 1.27.16
Kubernetes versions prior to 1.28.12
Kubernetes versions prior to 1.29.7
Kubernetes versions prior to 1.30.4
Description:
A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTINUsers may be able to read container logs and NT AUTHORITYAuthenticated Users may be able to modify container logs. The issue is related to incorrectly used default permissions in the kubelet utility for managing virtual machine clusters in Kubernetes for Windows operating systems. This could allow an attacker to modify information stored in container logs.
Recommendations:
For Kubernetes versions prior to 1.27.16, update to version 1.27.16 or later.
For Kubernetes versions prior to 1.28.12, update to version 1.28.12 or later.
For Kubernetes versions prior to 1.29.7, update to version 1.29.7 or later.
For Kubernetes versions prior to 1.30.4, update to version 1.30.4 or later.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Kubernetes
Red Os