CVE-2024-36541
CVE-2024-36541 concerns the Kubernetes logging-operator (v4.6.0) with insecure permissions that allow an attacker to access the service account token. This enables potential data access and privilege escalation within the cluster. Affected component: logging-operator, version 4.6.0. Root cause: i...