Vulnerability Details CVE-2024-53349
Insecure permissions in kuadrant v0.11.3 allow attackers to gain access to the service account's token, leading to escalation of privileges via the secretes component in the k8s cluster
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.9%
CVSS Severity
CVSS v3 Score 7.4
References
Products affected by CVE-2024-53349
-
cpe:2.3:a:linuxfoundation:kuadrant:0.1.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.10.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.11.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.11.3
-
cpe:2.3:a:linuxfoundation:kuadrant:0.2.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.2.1
-
cpe:2.3:a:linuxfoundation:kuadrant:0.3.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.3.1
-
cpe:2.3:a:linuxfoundation:kuadrant:0.4.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.4.1
-
cpe:2.3:a:linuxfoundation:kuadrant:0.5.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.6.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.6.1
-
cpe:2.3:a:linuxfoundation:kuadrant:0.7.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.7.1
-
cpe:2.3:a:linuxfoundation:kuadrant:0.8.0
-
cpe:2.3:a:linuxfoundation:kuadrant:0.9.0