{"id":"GO-2022-0885","summary":"Improper Authentication in Kubernetes in k8s.io/kubernetes","details":"Improper Authentication in Kubernetes in k8s.io/kubernetes","aliases":["CVE-2020-8558","GHSA-wqv3-8cm6-h6wg"],"modified":"2026-02-04T02:48:53.519131Z","published":"2024-08-21T15:29:06Z","related":["CGA-p5qr-2rc3-crw5"],"database_specific":{"review_status":"REVIEWED","url":"https://pkg.go.dev/vuln/GO-2022-0885"},"references":[{"type":"ADVISORY","url":"https://github.com/bottlerocket-os/bottlerocket/security/advisories/GHSA-wqv3-8cm6-h6wg"},{"type":"WEB","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1843358"},{"type":"WEB","url":"https://github.com/kubernetes/kubernetes/issues/92315"},{"type":"WEB","url":"https://github.com/tabbysable/POC-2020-8558"},{"type":"WEB","url":"https://groups.google.com/g/kubernetes-announce/c/sI4KmlH3S2I/m/TljjxOBvBQAJ"},{"type":"WEB","url":"https://groups.google.com/g/kubernetes-security-announce/c/B1VegbBDMTE"},{"type":"WEB","url":"https://labs.bishopfox.com/tech-blog/bad-pods-kubernetes-pod-privilege-escalation"},{"type":"WEB","url":"https://security.netapp.com/advisory/ntap-20200821-0001"},{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2020/07/08/1"}],"affected":[{"package":{"name":"k8s.io/kubernetes","ecosystem":"Go","purl":"pkg:golang/k8s.io/kubernetes"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.16.11"},{"introduced":"1.17.0"},{"fixed":"1.17.7"},{"introduced":"1.18.0"},{"fixed":"1.18.4"}]}],"ecosystem_specific":{},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2022-0885.json"}}],"schema_version":"1.7.3"}