diff --git a/cves/CVE-2024-10220.yaml b/cves/CVE-2024-10220.yaml
new file mode 100644
index 0000000..71689a1
--- /dev/null
+++ b/cves/CVE-2024-10220.yaml
@@ -0,0 +1,18 @@
+cve: CVE-2024-10220
+issueUrl: https://github.com/kubernetes/kubernetes/issues/128885
+published: 2024-11-20T00:00Z
+description: |
+  A security vulnerability was discovered in Kubernetes that could allow a user with the ability to create a pod and associate a gitRepo volume to execute arbitrary commands beyond the container boundary. This vulnerability leverages the hooks folder in the target repository to run arbitrary commands outside of the container's boundary. This issue was originally publicly disclosed with a fix in July (#124531), and we are retroactively assigning it a CVE to assist in awareness and tracking.
+components:
+  - kubelet
+cvss:
+  kubernetes:
+    scoreV3: 8.1
+    vectorV3: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
+affected:
+  - range: "<= 1.28.11"
+    fixedBy: "1.28.12"
+  - range: ">= 1.29, <= 1.29.6"
+    fixedBy: "1.29.7"
+  - range: ">= 1.30, <= 1.30.2"
+    fixedBy: "1.30.3"