The vulnerability of the command-line interface (CLI) of the Kubernetes cluster synchronization software, which connects it to Flux configuration sources, allows a malicious actor to read or write arbitrary files on the system.
The vulnerability of the command-line interface CLI of the Kubernetes cluster synchronization software with respect to configuration sources from Flux is related to an incorrect path name limitation for accessing the restricted directory. Exploiting this vulnerability could allow an attacker to...