cbcvebase.
CVE-2024-9042
published 2025-03-13

CVE-2024-9042: This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is running one of the affected versions listed below.

PriorityP431medium5.9CVSS 3.1
AVNACHPRHUINSUCHIHAN
EPSS
1.39%
69.0th percentile
This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is running one of the affected versions listed below.

Affected

10 ranges
VendorProductVersion rangeFixed in
debiankubernetes
k8s.iokubernetes>= 0 < 1.29.131.29.13
k8s.iokubernetes>= 1.30.0-alpha.0 < 1.30.91.30.9
k8s.iokubernetes>= 1.31.0-alpha.0 < 1.31.51.31.5
k8s.iokubernetes>= 1.32.0-alpha.0 < 1.32.11.32.1
kuberneteskubelet
kuberneteskubeletv1.30 – v1.30.8
kuberneteskubeletv1.31 – v1.31.4
kuberneteskubeletv1.32 – v1.32.0
msrccbl2_kubernetes_1.28.4-18_on_cbl_mariner_2.0

CVSS provenance

nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
vendor_debian5.9LOW
vendor_msrc5.9MEDIUM
vendor_redhat5.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.