An incorrect default permissions vulnerability was found in the mig-controller. Due to an incorrect cluster namespaces handling an attacker may be able to migrate a malicious workload to the target cluster, impacting confidentiality, integrity, and availability of the services located on that cluster.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-276,CWE-276,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| redhat | migration_toolkit | 1.5 |
| konveyor | mig-controller | * |
| redhat | migration_toolkit | 1.6 |
| redhat | migration_toolkit | 1.0 |