Vulnerability Report: GO-2022-0886
- CVE-2018-1002101, GHSA-wqwf-x5cj-rg56
- Affects: k8s.io/kubernetes
- Published: Aug 21, 2024
- Unreviewed
Kubernetes Arbitrary Command Injection in k8s.io/kubernetes
For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-wqwf-x5cj-rg56 or https://nvd.nist.gov/vuln/detail/CVE-2018-1002101.
Affected Modules
-
PathGo Versions
-
from v1.9.0 before v1.9.10, from v1.10.0 before v1.10.6, from v1.11.0 before v1.11.2
Aliases
References
- https://github.com/advisories/GHSA-wqwf-x5cj-rg56
- https://nvd.nist.gov/vuln/detail/CVE-2018-1002101
- https://github.com/kubernetes/kubernetes/commit/d65039c56ce4de5f2efdc38aa1284eeb95f89169
- https://github.com/kubernetes/kubernetes/issues/65750
- https://github.com/kubernetes/kubernetes/pull/65751
- https://security.netapp.com/advisory/ntap-20190416-0008
- https://vuln.go.dev/ID/GO-2022-0886.json
Feedback
This report is unreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.
See anything missing or incorrect?
Suggest an edit to this report.