In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using a secret, configMap, projected or downwardAPI volume can trigger deletion of arbitrary files/directories from the nodes where they are running.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: kubernetes
Published: 2018-03-13T17:00:00
Updated: 2024-08-05T22:00:41.652Z
Reserved: 2017-12-07T00:00:00
Link: CVE-2017-1002102
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-03-13T17:29:00.280
Modified: 2019-10-09T23:21:25.853
Link: CVE-2017-1002102
Redhat