cbcvebase.
CVE-2018-1002100
published 2018-06-02

CVE-2018-1002100: In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to version 1.9.6, the kubectl cp command insecurely handles tar data returned from the container…

PriorityP429medium5.5CVSS 3.0
AVLACLPRLUINSUCNIHAN
EPSS
1.59%
72.6th percentile
In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to version 1.9.6, the kubectl cp command insecurely handles tar data returned from the container, and can be caused to overwrite arbitrary local files.

Affected

17 ranges
VendorProductVersion rangeFixed in
debiankubernetes< kubernetes 1.17.4-1 (bookworm)kubernetes 1.17.4-1 (bookworm)
k8s.iokubernetes>= 1.5.0 < 1.9.61.9.6
k8s.iokubernetes>= 1.5.0-alpha.0 < 1.9.61.9.6
kuberneteskubernetes
kuberneteskubernetes
kuberneteskubernetes
kuberneteskubernetes
kuberneteskubernetes>= 0 < 1.17.4-11.17.4-1
kuberneteskubernetes>= 0 < 1.17.4-11.17.4-1
kuberneteskubernetes>= 0 < 1.17.4-11.17.4-1
kuberneteskubernetes>= 0 < 1.17.4-11.17.4-1
kuberneteskubernetes1.5.0 – 1.5.9
kuberneteskubernetes1.6.0 – 1.6.14
kuberneteskubernetes1.7.0 – 1.7.17
kuberneteskubernetes1.8.0 – 1.8.15
kuberneteskubernetes1.9.0 – 1.9.5
kuberneteskubernetes>= unspecified < v1.9.6v1.9.6

CVSS provenance

nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvdv2.03.6LOWAV:L/AC:L/Au:N/C:N/I:P/A:P
osv5.5MEDIUM
vendor_debian4.2MEDIUM
vendor_redhat4.2MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.