Code Execution Vulnerability Found In Kubernetes Windows Nodes
Thumbnail
Summary: A newly identified security vulnerability, CVE-2024-9042, affects Kubernetes clusters utilizing Windows worker nodes, allowing attackers to execute arbitrary commands through the Kubelet component. Rated Medium with a CVSS score of 5.9, this flaw can be exploited via the /logs endpoint. Organizations are urged to upgrade their Kubelet versions to mitigate the risk of exploitation.

Threat Actor: Unknown | unknown
Victim: Kubernetes Users | Kubernetes Users

Keypoints :

  • Vulnerability CVE-2024-9042 allows command execution on Windows worker nodes via the /logs endpoint.
  • Affected Kubelet versions include v1.32.0, v1.31.0 to v1.31.4, v1.30.0 to v1.30.8, and <=v1.29.12.
  • Recommended patched versions are v1.32.1, v1.31.5, v1.30.9, and v1.29.13.
  • System administrators should monitor audit logs for suspicious queries targeting the /logs endpoint.
  • Immediate action is advised to prevent potential exploitation of the vulnerability.

Source: https://securityonline.info/cve-2024-9042-code-execution-vulnerability-found-in-kubernetes-windows-nodes/