Wind River Support Network

HomeDefectsLIN1021-6787
Fixed

LIN1021-6787 : Security Advisory - kubernetes - CVE-2023-5408

Created: Nov 2, 2023    Updated: Nov 28, 2023
Resolved Date: Nov 24, 2023
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. A remote attacker who modifies the node role label could steer workloads from the control plane and etcd nodes onto different worker nodes and gain broader access to the cluster.

CREATE(Triage):(User=admin) CVE-2023-5408 (https://nvd.nist.gov/vuln/detail/CVE-2023-5408)
Live chat
Online