CVE-2024-36540

Published: Jul 24, 2024

Modified: Mar 13, 2025

PUBLISHED

Description

Insecure permissions in external-secrets v0.9.16 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gist.github.com/HouqiyuA/a4834f3c8450f9d89e2bc4d5c4beef6a

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-36540

Description

Affected Products

References