CVE-2023-3676
Last modified
CVE-2023-3676 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.. EPSS estimates a 11.67% chance of exploitation in the next 30 days.
Description
A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Kubernetes | Kubernetes | < 1.24.17 |
| Kubernetes | Kubernetes | >= 1.25.0, < 1.25.13 |
| Kubernetes | Kubernetes | >= 1.26.0, < 1.26.8 |
| Kubernetes | Kubernetes | >= 1.27.0, < 1.27.5 |
| Kubernetes | Kubernetes | >= 1.28.0, < 1.28.1 |
References
- https://github.com/kubernetes/kubernetes/issues/119339Exploit, Mitigation, Patch, Third Party Advisory
- https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zcThird Party Advisory
- https://github.com/kubernetes/kubernetes/issues/119339Exploit, Mitigation, Patch, Third Party Advisory
- https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zcThird Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-3676?
How severe is CVE-2023-3676?
How do I fix CVE-2023-3676?
Are you affected by CVE-2023-3676?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST