Apr 27, 2018 12:32 pm EDT
Categorized: Medium Severity
Share this post:
IBM Cloud Container Service is affected by the following vulnerabilities which in some cases allow unauthorized access to the file system on the cluster worker nodes, including deletion of arbitrary files and directories. This document describes the issues and
CVE(s): CVE-2017-1002101, CVE-2017-1002102
Affected product(s) and affected version(s):
IBM Cloud Container Service clusters using Kubernetes versions 1.7.4, 1.8.8, 1.9.3 or earlier.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg2C1000373
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140496
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/140466
from IBM Product Security Incident Response Team https://ift.tt/2r42z7P
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.