CVE-2023-5408

Published November 2nd, 2023

View on NVD ↗

CVSS v3

7.2

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. A remote attacker who modifies the node role label could steer workloads from the control plane and etcd nodes onto different worker nodes and gain broader access to the cluster.

openshift/kubernetes

This is the repo that tracks all patches to the OpenShift distribution of Kubernetes on branches corresponding to OpenShift releases. See https://github.com/openshift/kubernetes/blob/master/README.openshift.md for more

GitHub