CVE-2022-0532

An incorrect sysctls validation vulnerability was found in CRI-O 1.18 and earlier. The sysctls from the list of "safe" sysctls specified for the cluster will be applied to the host if an attacker is able to create a pod with a hostIPC and hostNetwork kernel namespace.
Configurations

Configuration 1 (hide)

cpe:2.3:a:kubernetes:cri-o:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-02-09 23:15

Updated : 2024-02-28 19:09


NVD link : CVE-2022-0532

Mitre link : CVE-2022-0532

CVE.ORG link : CVE-2022-0532


JSON object : View

Products Affected

kubernetes

  • cri-o

redhat

  • openshift_container_platform
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource