CVE-2023-3676 - A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes ma

CVE-2023-3676

Summary

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.

References

https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zc
https://github.com/kubernetes/kubernetes/issues/119339

Vulnerable Configurations

CVSS

Base:	None
Impact:
Exploitability:

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

01-11-2023 - 12:51

Published

31-10-2023 - 21:15

Last modified

01-11-2023 - 12:51