CVE-2020-27151
CVE-2020-27151 affects the Kata Containers runtime through 1.11.3 and 2.x through 2.0-rc1. The runtime will execute binaries provided via annotations without any validation, allowing a user with cluster access to have kata-runtime execute arbitrary binaries as root on worker nodes. The connected ...