CVE-2018-1002100

In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to version 1.9.6, the kubectl cp command insecurely handles tar data returned from the container, and can be caused to overwrite arbitrary local files.

Published: Jun 2, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-1002100
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Low
Score: 3.6
AV:L/AC:L/Au:N/C:N/I:P/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
kubernetes / kubernetes	1.9.0	1.9.5.x
kubernetes / kubernetes	1.8.0	1.8.15.x
kubernetes / kubernetes	1.7.0	1.7.17.x
kubernetes / kubernetes	1.6.0	1.6.14.x
kubernetes / kubernetes	1.5.0	1.5.9.x

https://bugzilla.redhat.com/show_bug.cgi?id=1564305
https://github.com/kubernetes/kubernetes/issues/61297
https://hansmi.ch/articles/2018-04-openshift-s2i-security

Vulnerability Database

289,697

CVE-2018-1002100