← Retour aux CVEs
CVE-2019-11245
N/ADescription
In kubelet v1.13.6 and v1.14.2, containers for pods that do not specify an explicit runAsUser attempt to run as uid 0 (root) on container restart, or if the image was previously pulled to the node. If the pod specified mustRunAsNonRoot: true, the kubelet will refuse to start the container as root. If the pod did not specify mustRunAsNonRoot: true, the kubelet will run the container as uid 0.
Details CVE
Score CVSS v3.1N/A
Publie8/29/2019
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
kubernetes:kubernetes
Faiblesses (CWE)
CWE-703CWE-264
References
https://github.com/kubernetes/kubernetes/issues/78308(jordan@liggitt.net)
https://security.netapp.com/advisory/ntap-20190919-0003/(jordan@liggitt.net)
https://github.com/kubernetes/kubernetes/issues/78308(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20190919-0003/(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.