vulnerability

Red Hat OpenShift: CVE-2024-5321: kubelet: Incorrect permissions on Windows containers logs

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:C/I:P/A:N)	Jul 18, 2024	Sep 10, 2024	Aug 11, 2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:P/A:N)

Published

Jul 18, 2024

Added

Sep 10, 2024

Modified

Aug 11, 2025

Description

A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\Users may be able to read container logs and NT AUTHORITY\Authenticated Users may be able to modify container logs.

Solutions

linuxrpm-upgrade-openshift4-wincw-windows-machine-config-rhel8-operatorlinuxrpm-upgrade-openshift4-wincw-windows-machine-config-rhel9-operator

References

CVE-2024-5321
https://attackerkb.com/topics/CVE-2024-5321
CWE-276
REDHAT-RHSA-2024:6460
REDHAT-RHSA-2024:6461
REDHAT-RHSA-2024:6734

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today