github.com/kubernetes-sigs/secrets-store-csi-driver is vulnerable to directory traversal. An attacker can gain access to host filesystem including paths under var/lib/kubelet/pods that contain other Kubernetes Secrets.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/kubernetes-sigs/secrets-store-csi-driver | le | v0.0.16 |