CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
38.4%
The kubectl cp command allows copying files between containers and the user
machine. To copy files from a container, Kubernetes creates a tar inside
the container, copies it over the network, and kubectl unpacks it on the
user’s machine. If the tar binary in the container is malicious, it could
run any code and output unexpected, malicious results. An attacker could
use this to write files to any path on the user’s machine when kubectl cp
is called, limited only by the system permissions of the local user. The
untar function can both create and follow symbolic links. The issue is
resolved in kubectl v1.11.9, v1.12.7, v1.13.5, and v1.14.0.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | kubernetes | < any | UNKNOWN |
ubuntu | 22.04 | noarch | kubernetes | < any | UNKNOWN |
ubuntu | 24.04 | noarch | kubernetes | < any | UNKNOWN |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
38.4%