CVE-2024-10220
1 minute read
Vulnerability details Upstream patch
This vulnerability is related to validation of gitRepo volume input. Upstream tightened validation (for example, limiting unsafe directory patterns), and KLTS backported the required fixes for maintained branches.
Scope
Affected range in upstream metadata: <= k8s1.28.11.
CVSS scores
This vulnerability is rated as high-risk with a CVSS score of 8.1.
Fixed by official
Fixed by KLTS
- v1.27.16-lts.1 kubernetes/kubernetes#124531
- v1.26.15-lts.1 kubernetes/kubernetes#124531
- v1.25.16-lts.1 kubernetes/kubernetes#124531
- v1.24.17-lts.1 kubernetes/kubernetes#124531
- v1.23.17-lts.1 kubernetes/kubernetes#124531
- v1.22.17-lts.1 kubernetes/kubernetes#124531
- v1.21.14-lts.2 kubernetes/kubernetes#124531
- v1.20.15-lts.3 kubernetes/kubernetes#124531
- v1.19.16-lts.4 kubernetes/kubernetes#124531
- v1.18.20-lts.3 CVE-2024-10220.1.18.patch
- v1.17.17-lts.3 CVE-2024-10220.1.18.patch
- v1.16.15-lts.3 CVE-2024-10220.1.18.patch
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.
Last modified
April 15, 2026
: docs: sync recent kubernetes-lts releases and CVEs (5ee2b8f3)