Security Advisory

CVE-2017-1002101

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-03-13 17:00:00

Last updated 2024-08-05 22:00:41

Assigner kubernetes

State PUBLISHED

Description

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outside of the volume, including the hosts filesystem.

← Browse all CVEs View on cve.org ↗