Privilege Escalation in Kubernetes PodSecurityPolicy Admission Plugin

Privilege Escalation in Kubernetes PodSecurityPolicy Admission Plugin

CVE-2017-1000056 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.

Learn more about our Web Application Penetration Testing UK.