Lucene search

ChainguardCHAINGUARD:CVE-2023-28841

HistoryMay 04, 2024 - 9:06 a.m.

CVE-2023-28841 vulnerabilities

2024-05-0409:06:25

Chainguard

packages.cgr.dev

cve-2023-28841

vulnerabilities

software packages

flux-image-reflector-controller

helm

melange

bom

apko

flux-helm-controller

ctop

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

61.5%

JSON

Vulnerabilities for packages: melange, helm, apko, flux-image-reflector-controller, flux-helm-controller-0.37, ctop, ko, up, bom

CPENameOperatorVersion
flux-helm-controller-0.37le0.27.0-r7
flux-image-reflector-controllerle0.26.1-r3
apkole0.7.3-r1
bomle0.6.0-r0
ctople0.7.7-r13
helmle3.12.2-r1
kole0.13.0-r3
melangele0.3.2-r1
uple0.24.0-r1

Name	Operator	Version
flux-helm-controller-0.37	le	0.27.0-r7
flux-image-reflector-controller	le	0.26.1-r3
apko	le	0.7.3-r1
bom	le	0.6.0-r0
ctop	le	0.7.7-r13
helm	le	3.12.2-r1
ko	le	0.13.0-r3
melange	le	0.3.2-r1
up	le	0.24.0-r1