High severity8.8NVD Advisory· Published Mar 13, 2018· Updated Jun 17, 2026
CVE-2017-1002101
CVE-2017-1002101
Description
In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outside of the volume, including the host's filesystem.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
61.3.x, 1.4.x, 1.5.x, 1.6.x, <1.7.14, <1.8.9, <1.9.4+ 1 more
- (no CPE)range: 1.3.x, 1.4.x, 1.5.x, 1.6.x, <1.7.14, <1.8.9, <1.9.4
- (no CPE)range: v1.3.x
- osv-coords4 versionspkg:rpm/opensuse/cri-o&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cri-tools&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/go1.14&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/kubernetes&distro=openSUSE%20Leap%2015.1
< 1.17.1-lp151.2.2+ 3 more
- (no CPE)range: < 1.17.1-lp151.2.2
- (no CPE)range: < 1.18.0-lp151.2.1
- (no CPE)range: < 1.14-lp151.6.1
- (no CPE)range: < 1.18.0-lp151.5.1
Patches
Vulnerability mechanics
References
3- access.redhat.com/errata/RHSA-2018:0475nvdThird Party Advisory
- github.com/kubernetes/kubernetes/issues/60813nvdIssue TrackingMitigationVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.htmlnvd
News mentions
0No linked articles in our index yet.