VYPR

Go modules package

sigs.k8s.io/azurefile-csi-driver

pkg:golang/sigs.k8s.io/azurefile-csi-driver

Vulnerabilities (1)

  • CVE-2024-3744MedMay 15, 2024
    affected < 1.29.4fixed 1.29.4

    A security issue was discovered in azure-file-csi-driver where an actor with access to the driver logs could observe service account tokens. These tokens could then potentially be exchanged with external cloud providers to access secrets stored in cloud vault solutions. Tokens ar