github.com/projectcalico/calico/ is vulnerable to Privilege Escalation. The vulnerability is due to an incorrect SUID bit configuration in the Calico CNI install binary, combined with the ability to control the input binary, allows an attacker to execute an arbitrary binary with elevated privileges.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/projectcalico/calico | le | v3.27.2 | |
github.com/projectcalico/calico | le | v3.27.2 |
github.com/projectcalico/calico/commit/5cfda6d44ad97cf099e3dcb663e72f1d736d49aa
github.com/projectcalico/calico/commit/c88c5b096d2ca44cd31f7d3bbf3ac8fd12d18fac
github.com/projectcalico/calico/issues/7981
github.com/projectcalico/calico/pull/8447
github.com/projectcalico/calico/pull/8517
www.tigera.io/security-bulletins-tta-2024-001/