cvedb.io
CVE-2019-3779
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2019-03-08T16:29:00.240 · Last modified 2026-06-17T02:35:34.847

Summary

Cloud Foundry Container Runtime, versions prior to 0.29.0, deploys Kubernetes clusters utilize the same CA (Certificate Authority) to sign and trust certs for ETCD as used by the Kubernetes API. This could allow a user authenticated with a cluster to request a signed certificate leveraging the Kubernetes CSR capability to obtain a credential that could escalate privilege access to ETCD.

Affected products

cloudfoundry — container_runtime

Does this affect you?

Add your gear to cvedb and we'll alert you only when cloudfoundry ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.