SUSE: CVE-2025-24884: SUSE Linux Security Advisory

SUSE: CVE-2025-24884: SUSE Linux Security Advisory

Severity

4

CVSS

(AV:L/AC:M/Au:N/C:P/I:P/A:P)

Published

01/29/2025

Created

02/13/2025

Added

02/12/2025

Modified

02/12/2025

Description

kube-audit-rest is a simple logger of mutation/creation requests to the k8s api. If the "full-elastic-stack" example vector configuration was used for a real cluster, the previous values of kubernetes secrets would have been disclosed in the audit messages. This vulnerability is fixed in 1.0.16.

Solution(s)

• suse-upgrade-govulncheck-vulndb

References

• https://attackerkb.com/topics/cve-2025-24884
• CVE - 2025-24884