SUSE-SU-2024:1404-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2024-3177
Published: 23 Apr 2024, 14:52
Last modified:04 Feb 2026, 03:30

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

23 Apr 2024, 14:52
Published
Vulnerability first disclosed
04 Feb 2026, 03:30
Last Modified
Vulnerability information updated

Description

Security update for kubernetes1.23 This update for kubernetes1.23 fixes the following issues: - CVE-2024-3177: Fixed bypass of mountable secrets policy imposed by the ServiceAccount admission plugin (bsc#1222539)

Affected Systems

  • opensusekubernetes1.23&distro=openSUSE Leap 15.5

    < 1.23.17-150500.3.12.1

  • susekubernetes1.23&distro=SUSE Linux Enterprise Module for Containers 15 SP5

    < 1.23.17-150500.3.12.1

References (3)