Security Advisory

CVE-2020-1701

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-27 19:45:04

Last updated 2024-08-04 06:46:29

Assigner redhat

State PUBLISHED

Description

A flaw was found in the KubeVirt main virt-handler versions before 0.26.0 regarding the access permissions of virt-handler. An attacker with access to create VMs could attach any secret within their namespace, allowing them to read the contents of that secret.

← Browse all CVEs View on cve.org ↗