GHSA-95FJ-3W7G-4R27 Nuclio Shell Runtime Command Injection Leading to Privilege Escalation
Summary This vulnerability exists in Nuclio's Shell Runtime component, allowing attackers with function invocation permissions to inject malicious commands via HTTP request headers, execute arbitrary code with root privileges in function containers, steal ServiceAccount Tokens with cluster-admin...