Unrated severityNVD Advisory· Published Dec 17, 2021· Updated Sep 16, 2024
Host operations allowed in privileged Longhorn managed pods
CVE-2021-36779
Description
A Missing Authentication for Critical Function vulnerability in SUSE Longhorn allows any workload in the cluster to execute any binary present in the image on the host without authentication. This issue affects: SUSE Longhorn longhorn versions prior to 1.1.3; longhorn versions prior to 1.2.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- SUSE/Longhornv5Range: longhorn
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.