← Zuruck zu CVEs
CVE-2019-11245
N/ABeschreibung
In kubelet v1.13.6 and v1.14.2, containers for pods that do not specify an explicit runAsUser attempt to run as uid 0 (root) on container restart, or if the image was previously pulled to the node. If the pod specified mustRunAsNonRoot: true, the kubelet will refuse to start the container as root. If the pod did not specify mustRunAsNonRoot: true, the kubelet will run the container as uid 0.
CVE Details
CVSS v3.1 BewertungN/A
Veroffentlicht8/29/2019
Zuletzt geandert11/21/2024
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
kubernetes:kubernetes
Schwachen (CWE)
CWE-703CWE-264
Referenzen
https://github.com/kubernetes/kubernetes/issues/78308(jordan@liggitt.net)
https://security.netapp.com/advisory/ntap-20190919-0003/(jordan@liggitt.net)
https://github.com/kubernetes/kubernetes/issues/78308(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20190919-0003/(af854a3a-2127-422b-91ae-364da2661108)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.