CVE-2017-1002101

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outside of the volume, including the host's filesystem.
Link Following
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
kubernetesCNA
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
VendorProductVersion
kuberneteskubernetes
1.3.0 ≤
𝑥
≤ 1.3.10
kuberneteskubernetes
1.4.0 ≤
𝑥
≤ 1.4.12
kuberneteskubernetes
1.5.0 ≤
𝑥
≤ 1.5.8
kuberneteskubernetes
1.6.0 ≤
𝑥
≤ 1.6.13
kuberneteskubernetes
1.7.0 ≤
𝑥
< 1.7.14
kuberneteskubernetes
1.8.0 ≤
𝑥
< 1.8.9
kuberneteskubernetes
1.9.0 ≤
𝑥
< 1.9.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
kubernetes
bullseye
1.20.5+really1.20.2-1
fixed
sid
1.20.5+really1.20.2-1.1
fixed
trixie
1.20.5+really1.20.2-1.1
fixed
bookworm
1.20.5+really1.20.2-1.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
kubernetes
artful
dne
xenial
dne
trusty
dne
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html
https://access.redhat.com/errata/RHSA-2018:0475
https://github.com/bgeesaman/subpath-exploit/
https://github.com/kubernetes/kubernetes/issues/60813
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html
https://access.redhat.com/errata/RHSA-2018:0475
https://github.com/bgeesaman/subpath-exploit/
https://github.com/kubernetes/kubernetes/issues/60813