What the vulnerability does
01Description
Azure Arc-enabled Kubernetes Extension Cluster-Scope Elevation of Privilege Vulnerability
CVE-2024-28917
MEDIUM
CVE-2024-28917: Azure Arc-enabled Kubernetes Extension Cluster-Scope Elevation of Privilege Vulnerability
CVSS base score
6.2/10
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N/E:U/RL:O/RC:C
Key dates
02Disclosure timeline
April 9, 2024
CVE published
May 3, 2025
Record updated
External resources
03References
Related vulnerabilities
