CVE-2024-36539
9.8CRITICALInsecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.
Veröffentlicht: 7/24/2024Aktualisiert: 6/27/2025
Beschreibung
Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.
KI-AnalyseKI-gestützt
Betroffene Produkte
projectcontourcontour
1.28.3
Referenzen
- https://gist.github.com/HouqiyuA/c92f9ec979653dceeea947afd0b47a80Third Party Advisory
- https://gist.github.com/HouqiyuA/c92f9ec979653dceeea947afd0b47a80Third Party Advisory