Vulnerability Report: GO-2023-1977
- CVE-2017-1002102, GHSA-mm7g-f2gg-cw8g
- Affects: k8s.io/kubernetes
- Published: Aug 20, 2024
- Modified: Aug 05, 2025
Kubernetes can trigger deletion of arbitrary files from the nodes where containers are running in k8s.io/kubernetes
For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-mm7g-f2gg-cw8g.
Affected Modules
-
PathGo Versions
-
from v1.3.0 before v1.7.14, from v1.8.0 before v1.8.9, from v1.9.0 before v1.9.4
Aliases
References
- https://github.com/advisories/GHSA-mm7g-f2gg-cw8g
- https://access.redhat.com/errata/RHSA-2018:0475
- https://github.com/kubernetes/kubernetes/issues/60814
- https://vuln.go.dev/ID/GO-2023-1977.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.