Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including `/var/lib/kubelet/pods`.

Affected Packages

Go github.com/hashicorp/vault-csi-provider

Affected versions: 0 (fixed in 0.0.6)

Go github.com/Azure/secrets-store-csi-driver-provider-azure

Affected versions: 0 (fixed in 0.0.10)

Go github.com/GoogleCloudPlatform/secrets-store-csi-driver-provider-gcp

Affected versions: 0 (fixed in 0.2.0)

Related CVEs

CVE-2020-8567

Key Information

GHSA ID

GHSA-2v35-wj4r-rcmv

Published

May 24, 2022 5:40 PM

Last Modified

November 18, 2024 4:26 PM

CVSS Score

2.5 /10

Primary Ecosystem

Primary Package

github.com/hashicorp/vault-csi-provider

GitHub Reviewed

✓ Yes

Dataset

Last updated: September 15, 2025 6:32 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.