5 matches found
BIT-CONTOUR-2024-36539
Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36539
Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36539
Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36539
In Contour 1.28.3, insecure permissions on the service account allow attackers to access the token and escalate privileges, enabling sensitive data access. Affects Contour (Kubernetes ingress controller) v1.28.3; root cause is improper token permissions. Documented impact: high confidentiality, i...
CVE-2024-36539
Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...