SUSE-SU-2024:1403-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2024-3177
Published: 23 Apr 2024, 14:52
Last modified:04 Feb 2026, 03:53

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

23 Apr 2024, 14:52
Published
Vulnerability first disclosed
04 Feb 2026, 03:53
Last Modified
Vulnerability information updated

Description

Security update for kubernetes1.24 This update for kubernetes1.24 fixes the following issues: - CVE-2024-3177: Fixed bypass of mountable secrets policy imposed by the ServiceAccount admission plugin (bsc#1222539)

Affected Systems

  • opensusekubernetes1.24&distro=openSUSE Leap 15.5

    < 1.24.17-150500.3.16.1

  • susekubernetes1.24&distro=SUSE Linux Enterprise Module for Containers 15 SP5

    < 1.24.17-150500.3.16.1

References (3)