Lucene search
PRIOn knowledge basePRION:CVE-2021-20218HistoryMar 16, 2021 - 9:15 p.m.
Design/Logic Flaw
2021-03-1621:15:00
PRIOn knowledge base
www.prio-n.com
3
A flaw was found in the fabric8 kubernetes-client in version 4.2.0 and after. This flaw allows a malicious pod/container to cause applications using the fabric8 kubernetes-client copy command to extract files outside the working path. The highest threat from this vulnerability is to integrity and system availability. This has been fixed in kubernetes-client-4.13.2 kubernetes-client-5.0.2 kubernetes-client-4.11.2 kubernetes-client-4.7.2
Related
nvd
nvd
CVE-2021-20218
2021-03-16 21:15:10
osv
osv
Improper Limitation of a Pathname to a Restricted Directory in Fabric8 Kubernetes Client
2022-05-24 17:44:37
CVE-2021-20218
2021-03-16 21:15:10
cve
cve
CVE-2021-20218
2021-03-16 21:15:10
cvelist
cvelist
CVE-2021-20218
2021-03-16 21:00:32
veracode
veracode
Directory Traversal
2021-02-04 03:44:39
github
github
redhatcve
redhatcve
CVE-2021-20218
2021-02-02 11:37:51
nessus
nessus
RHEL 7 / 8 : OpenShift Container Platform 4.7.5 (RHSA-2021:1006)
2021-04-05 00:00:00
redhat
redhat
ibm
ibm