← Back to CVEs
CVE-2019-11245
N/ADescription
In kubelet v1.13.6 and v1.14.2, containers for pods that do not specify an explicit runAsUser attempt to run as uid 0 (root) on container restart, or if the image was previously pulled to the node. If the pod specified mustRunAsNonRoot: true, the kubelet will refuse to start the container as root. If the pod did not specify mustRunAsNonRoot: true, the kubelet will run the container as uid 0.
CVE Details
CVSS v3.1 ScoreN/A
Published8/29/2019
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
kubernetes:kubernetes
Weaknesses (CWE)
CWE-703CWE-264
References
https://github.com/kubernetes/kubernetes/issues/78308(jordan@liggitt.net)
https://security.netapp.com/advisory/ntap-20190919-0003/(jordan@liggitt.net)
https://github.com/kubernetes/kubernetes/issues/78308(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20190919-0003/(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.