6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
7.3 High
AI Score
Confidence
High
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
19.7%
Vulnerabilities for packages: helm, buildkitd, kube-fluentd-operator, sigstore-scaffolding, vault-csi-provider, gitness, yq, azure-aad-pod-identity-mic, rqlite, pulumi, mc, kubernetes-dashboard, vertical-pod-autoscaler, kaf, kubernetes-csi-external-attacher, k3d, nodetaint, flux-kustomize-controller, gomplate, aws-efs-csi-driver, oauth2-proxy, flux-kustomize-controller-0.37, kubernetes-csi-external-attacher-fips, prometheus-operator, prometheus-statsd-exporter-fips, kubeflow-katib, grpcurl, bank-vaults, k8sgpt-operator, spark-operator, kube-state-metrics, hugo, gitlab-runner, flux-notification-controller-0.37, kubernetes-csi-external-snapshotter, kyverno, bank-vaults-fips, argo-cd, kubernetes-dns-node-cache, prometheus-node-exporter, gitlab-pages, metacontroller, kubernetes-csi-node-driver-registrar-fips, flux-helm-controller, vault-k8s, gke-gcloud-auth-plugin, kubernetes-csi-external-resizer, eks-distro-coredns, nfs-subdir-external-provisioner, runc, aws-load-balancer-controller, crossplane-provider-aws, prometheus-fips, secrets-store-csi-driver, git-lfs, prometheus-blackbox-exporter, external-dns, kots, karpenter, prometheus, weaviate, hey, prometheus-node-exporter-fips, kubernetes-csi-node-driver-registrar, prometheus-pushgateway, coredns, prometheus-elasticsearch-exporter-fips, haproxy-ingress, external-dns-fips, trillian, kube-logging-operator, cert-manager-fips, cosign, dive, cloud-sql-proxy, pulumi-kubernetes-operator, prometheus-statsd-exporter, prometheus-mysqld-exporter, cluster-autoscaler-fips, nfs-subdir-external-provisioner-fips, kubevela, k3s, aws-ebs-csi-driver, dynamic-localpv-provisioner, metrics-server-fips, node-problem-detector, flux-source-controller, containerd, influxd, crossplane-provider-azure, kubernetes-csi-livenessprobe, k8sgpt, dex-k8s-authenticator, apko, prometheus-stackdriver-exporter, flux, flux-notification-controller, kube-logging-logging-operator, falcoctl, opentofu, py3-seldon-core, frp, cue, thanos, external-secrets, nvidia-device-plugin, wireguard-go, kube-state-metrics-fips, kpt, wavefront-collector-for-kubernetes, pulumi-language-yaml, prometheus-alertmanager, aws-load-balancer-controller-fips, src, stakater-reloader, secrets-store-csi-driver-provider-gcp, kubernetes-dashboard-metrics-scraper, prometheus-postgres-exporter-fips, keda, memcached-exporter, kubernetes-csi-external-provisioner, volume-modifier-for-k8s-fips, nri-prometheus, cluster-autoscaler, pulumi-language-java, dynamic-localpv-provisioner-fips, tctl, kyverno-policy-reporter-kyverno-plugin, gatekeeper, external-secrets-operator, kubernetes-csi-livenessprobe-fips, kiam, pulumi-language-dotnet, kyverno-policy-reporter, ollama, skaffold, dgraph, zot, telegraf, kubernetes-csi-external-resizer-fips, gobuster, kube-oidc-proxy, newrelic-infrastructure-agent, terraform, trust-manager, prometheus-mongodb-exporter-fips, bom, thanos-operator, metrics-server, kubewatch, prometheus-adapter, prometheus-bind-exporter, flux-image-automation-controller, timoni, prometheus-pushgateway-fips, fuse-overlayfs-snapshotter, flux-source-controller-0.37, vault, flux-image-reflector-controller, aactl, chartmuseum, dex, minio, consul, seldon-core-operator, prometheus-elasticsearch-exporter, prometheus-adapter-fips, flux-helm-controller-0.37, grafana, tkn, prometheus-postgres-exporter, prometheus-mongodb-exporter
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
7.3 High
AI Score
Confidence
High
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
19.7%