CVE-2024-5042

CVE-2024-5042CVE-2024-5042

Description

A flaw was found in the Submariner project. Due to unnecessary role-based access control permissions, a privileged attacker can run a malicious container on a node that may allow them to steal service account tokens and further compromise other nodes and potentially the entire cluster.

Scoring

CVSS 6.6 ()
VectorCVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N
Last modified2026-07-19
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.