CVE-2024-9042

Summary

This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is running one of the affected versions listed below.

Affected Software

VendorProductVersion RangeStatus
KubernetesKubelet<=v1.29.12affected
KubernetesKubeletv1.30 <= v1.30.8affected
KubernetesKubeletv1.31 <= v1.31.4affected
KubernetesKubeletv1.32 <= v1.32.0affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References