CVE-2024-36537
Severity:
HIGH
Type:
CWE-284
Improper Access Control
Publication date:
24/07/2024
Last modified:
01/08/2024
Description
Insecure permissions in cert-manager v1.14.4 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.
Impact
Base Score 3.x
7.20
Severity 3.x
HIGH