vulnerability

VMware Photon OS: CVE-2024-33522

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:L/AC:L/Au:M/C:C/I:C/A:C)	Apr 29, 2024	Jan 20, 2025	Sep 2, 2025

Severity

CVSS

(AV:L/AC:L/Au:M/C:C/I:C/A:C)

Published

Apr 29, 2024

Added

Jan 20, 2025

Modified

Sep 2, 2025

Description

In vulnerable versions of Calico (v3.27.2 and below), Calico Enterprise (v3.19.0-1, v3.18.1, v3.17.3 and below), and Calico Cloud (v19.2.0 and below), an attacker who has local access to the Kubernetes node, can escalate their privileges by exploiting a vulnerability in the Calico CNI install binary. The issue arises from an incorrect SUID (Set User ID) bit configuration in the binary, combined with the ability to control the input binary, allowing an attacker to execute an arbitrary binary with elevated privileges.

Solution

vmware-photon_os_update_tdnf

References

CVE-2024-33522
https://attackerkb.com/topics/CVE-2024-33522
CWE-269

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today