Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.
CPE | Name | Operator | Version |
---|---|---|---|
k8s.io/kubernetes | ge | 1.5.0 | |
k8s.io/kubernetes | lt | 1.5.5 |