6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
8.7%
A flaw was found in azure-file-csi-driver. Anyone with access to the driver logs could observe service account tokens. These tokens could then potentially be exchanged with external cloud providers to access secrets stored in cloud vault solutions.
bugzilla.redhat.com/show_bug.cgi?id=2280517
nvd.nist.gov/vuln/detail/CVE-2024-3744
www.cve.org/CVERecord?id=CVE-2024-3744