CVE-2024-36539
9.8CRITICALInsecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.
Опубликовано: 7/24/2024Обновлено: 6/27/2025
Описание
Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.
ИИ-АнализНа базе ИИ
Затронутые продукты
projectcontourcontour
1.28.3
Ссылки
- https://gist.github.com/HouqiyuA/c92f9ec979653dceeea947afd0b47a80Third Party Advisory
- https://gist.github.com/HouqiyuA/c92f9ec979653dceeea947afd0b47a80Third Party Advisory