VYPR
High severity7.1NVD Advisory· Published Mar 13, 2018· Updated Jun 17, 2026

CVE-2017-1002102

CVE-2017-1002102

Description

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using a secret, configMap, projected or downwardAPI volume can trigger deletion of arbitrary files/directories from the nodes where they are running.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
k8s.io/kubernetesGo
>= 1.3.0, < 1.7.141.7.14
k8s.io/kubernetesGo
>= 1.8.0, < 1.8.91.8.9
k8s.io/kubernetesGo
>= 1.9.0, < 1.9.41.9.4

Affected products

3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.