Search...

CVE-2020-8559

2020-07-22T14:15:00

ID CVE-2020-8559
Type cve
Reporter cve@mitre.org
Modified 2020-07-27T15:47:00

Description

The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.

JSON Vulners Source

Initial Source

{"id": "CVE-2020-8559", "bulletinFamily": "NVD", "title": "CVE-2020-8559", "description": "The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.", "published": "2020-07-22T14:15:00", "modified": "2020-07-27T15:47:00", "cvss": {"score": 6.0, "vector": "AV:N/AC:M/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-8559", "reporter": "cve@mitre.org", "references": ["https://groups.google.com/d/msg/kubernetes-security-announce/JAIGG5yNROs/19nHQ5wkBwAJ", "https://github.com/kubernetes/kubernetes/issues/92914"], "cvelist": ["CVE-2020-8559"], "type": "cve", "lastseen": "2020-08-08T11:55:52", "history": [{"bulletin": {"affectedSoftware": [{"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.13"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.16"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.18.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.16"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.18.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.14"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.14"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.14"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.15"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.15"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.13"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.15.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.13"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.13"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.17"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.7"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:kubernetes:kubernetes:1.13.9", "cpe:/a:kubernetes:kubernetes:1.10.1", "cpe:/a:kubernetes:kubernetes:1.14.1", "cpe:/a:kubernetes:kubernetes:1.16.5", "cpe:/a:kubernetes:kubernetes:1.10.9", "cpe:/a:kubernetes:kubernetes:1.11.5", "cpe:/a:kubernetes:kubernetes:1.8.15", "cpe:/a:kubernetes:kubernetes:1.8.5", "cpe:/a:kubernetes:kubernetes:1.6.6", "cpe:/a:kubernetes:kubernetes:1.18.0", "cpe:/a:kubernetes:kubernetes:1.8.7", "cpe:/a:kubernetes:kubernetes:1.17.4", "cpe:/a:kubernetes:kubernetes:1.16.6", "cpe:/a:kubernetes:kubernetes:1.7.0", "cpe:/a:kubernetes:kubernetes:1.6.10", "cpe:/a:kubernetes:kubernetes:1.12.7", "cpe:/a:kubernetes:kubernetes:1.6.7", "cpe:/a:kubernetes:kubernetes:1.8.4", "cpe:/a:kubernetes:kubernetes:1.16.8", "cpe:/a:kubernetes:kubernetes:1.8.13", "cpe:/a:kubernetes:kubernetes:1.12.8", "cpe:/a:kubernetes:kubernetes:1.10.6", "cpe:/a:kubernetes:kubernetes:1.6.4", "cpe:/a:kubernetes:kubernetes:1.7.10", "cpe:/a:kubernetes:kubernetes:1.6.12", "cpe:/a:kubernetes:kubernetes:1.13.2", "cpe:/a:kubernetes:kubernetes:1.6.1", "cpe:/a:kubernetes:kubernetes:1.11.0", "cpe:/a:kubernetes:kubernetes:1.10.3", "cpe:/a:kubernetes:kubernetes:1.11.9", "cpe:/a:kubernetes:kubernetes:1.7.15", "cpe:/a:kubernetes:kubernetes:1.12.5", "cpe:/a:kubernetes:kubernetes:1.10.2", "cpe:/a:kubernetes:kubernetes:1.6.13", "cpe:/a:kubernetes:kubernetes:1.7.4", "cpe:/a:kubernetes:kubernetes:1.8.11", "cpe:/a:kubernetes:kubernetes:1.10.12", "cpe:/a:kubernetes:kubernetes:1.7.1", "cpe:/a:kubernetes:kubernetes:1.13.1", "cpe:/a:kubernetes:kubernetes:1.16.10", "cpe:/a:kubernetes:kubernetes:1.7.14", "cpe:/a:kubernetes:kubernetes:1.9.0", "cpe:/a:kubernetes:kubernetes:1.12.3", "cpe:/a:kubernetes:kubernetes:1.13.5", "cpe:/a:kubernetes:kubernetes:1.10.10", "cpe:/a:kubernetes:kubernetes:1.9.10", "cpe:/a:kubernetes:kubernetes:1.13.6", "cpe:/a:kubernetes:kubernetes:1.10.7", "cpe:/a:kubernetes:kubernetes:1.6.14", "cpe:/a:kubernetes:kubernetes:1.7.12", "cpe:/a:kubernetes:kubernetes:1.7.6", "cpe:/a:kubernetes:kubernetes:1.10.11", "cpe:/a:kubernetes:kubernetes:1.8.6", "cpe:/a:kubernetes:kubernetes:1.8.9", "cpe:/a:kubernetes:kubernetes:1.6.8", "cpe:/a:kubernetes:kubernetes:1.18.1", "cpe:/a:kubernetes:kubernetes:1.7.11", "cpe:/a:kubernetes:kubernetes:1.17.1", "cpe:/a:kubernetes:kubernetes:1.13.10", "cpe:/a:kubernetes:kubernetes:1.7.16", "cpe:/a:kubernetes:kubernetes:1.13.0", "cpe:/a:kubernetes:kubernetes:1.6.0", "cpe:/a:kubernetes:kubernetes:1.12.11", "cpe:/a:kubernetes:kubernetes:1.10.8", "cpe:/a:kubernetes:kubernetes:1.6.2", "cpe:/a:kubernetes:kubernetes:1.14.3", "cpe:/a:kubernetes:kubernetes:1.11.6", "cpe:/a:kubernetes:kubernetes:1.16.7", "cpe:/a:kubernetes:kubernetes:1.12.10", "cpe:/a:kubernetes:kubernetes:1.9.9", "cpe:/a:kubernetes:kubernetes:1.14.5", "cpe:/a:kubernetes:kubernetes:1.8.3", "cpe:/a:kubernetes:kubernetes:1.17.3", "cpe:/a:kubernetes:kubernetes:1.9.1", "cpe:/a:kubernetes:kubernetes:1.16.0", "cpe:/a:kubernetes:kubernetes:1.14.4", "cpe:/a:kubernetes:kubernetes:1.8.1", "cpe:/a:kubernetes:kubernetes:1.12.6", "cpe:/a:kubernetes:kubernetes:1.7.9", "cpe:/a:kubernetes:kubernetes:1.8.10", "cpe:/a:kubernetes:kubernetes:1.16.9", "cpe:/a:kubernetes:kubernetes:1.14.0", "cpe:/a:kubernetes:kubernetes:1.17.2", "cpe:/a:kubernetes:kubernetes:1.16.1", "cpe:/a:kubernetes:kubernetes:1.12.4", "cpe:/a:kubernetes:kubernetes:1.13.8", "cpe:/a:kubernetes:kubernetes:1.7.8", "cpe:/a:kubernetes:kubernetes:1.6.3", "cpe:/a:kubernetes:kubernetes:1.10.4", "cpe:/a:kubernetes:kubernetes:1.11.8", "cpe:/a:kubernetes:kubernetes:1.12.9", "cpe:/a:kubernetes:kubernetes:1.6.11", "cpe:/a:kubernetes:kubernetes:1.14.7", "cpe:/a:kubernetes:kubernetes:1.7.3", "cpe:/a:kubernetes:kubernetes:1.7.13", "cpe:/a:kubernetes:kubernetes:1.9.7", "cpe:/a:kubernetes:kubernetes:1.9.11", "cpe:/a:kubernetes:kubernetes:1.12.0", "cpe:/a:kubernetes:kubernetes:1.9.3", "cpe:/a:kubernetes:kubernetes:1.10.13", "cpe:/a:kubernetes:kubernetes:1.9.6", "cpe:/a:kubernetes:kubernetes:1.11.3", "cpe:/a:kubernetes:kubernetes:1.7.7", "cpe:/a:kubernetes:kubernetes:1.6.9", "cpe:/a:kubernetes:kubernetes:1.11.2", "cpe:/a:kubernetes:kubernetes:1.10.0", "cpe:/a:kubernetes:kubernetes:1.8.2", "cpe:/a:kubernetes:kubernetes:1.15.0", "cpe:/a:kubernetes:kubernetes:1.9.12", "cpe:/a:kubernetes:kubernetes:1.11.1", "cpe:/a:kubernetes:kubernetes:1.9.4", "cpe:/a:kubernetes:kubernetes:1.7.5", "cpe:/a:kubernetes:kubernetes:1.14.2", "cpe:/a:kubernetes:kubernetes:1.11.4", "cpe:/a:kubernetes:kubernetes:1.11.7", "cpe:/a:kubernetes:kubernetes:1.9.8", "cpe:/a:kubernetes:kubernetes:1.16.4", "cpe:/a:kubernetes:kubernetes:1.8.12", "cpe:/a:kubernetes:kubernetes:1.6.5", "cpe:/a:kubernetes:kubernetes:1.14.6", "cpe:/a:kubernetes:kubernetes:1.8.14", "cpe:/a:kubernetes:kubernetes:1.17.0", "cpe:/a:kubernetes:kubernetes:1.13.4", "cpe:/a:kubernetes:kubernetes:1.7.2", "cpe:/a:kubernetes:kubernetes:1.8.0", "cpe:/a:kubernetes:kubernetes:1.9.2", "cpe:/a:kubernetes:kubernetes:1.8.16", "cpe:/a:kubernetes:kubernetes:1.12.2", "cpe:/a:kubernetes:kubernetes:1.13.7", "cpe:/a:kubernetes:kubernetes:1.10.5", "cpe:/a:kubernetes:kubernetes:1.13.3", "cpe:/a:kubernetes:kubernetes:1.9.5", "cpe:/a:kubernetes:kubernetes:1.12.1", "cpe:/a:kubernetes:kubernetes:1.16.2", "cpe:/a:kubernetes:kubernetes:1.7.17", "cpe:/a:kubernetes:kubernetes:1.16.3", "cpe:/a:kubernetes:kubernetes:1.17.5", "cpe:/a:kubernetes:kubernetes:1.14.8", "cpe:/a:kubernetes:kubernetes:1.8.8"], "cpe23": [], "cvelist": ["CVE-2020-8559"], "cvss": {"score": 6.0, "vector": "AV:N/AC:M/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cwe": ["CWE-601"], "description": "The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.", "edition": 3, "enchantments": {"dependencies": {"modified": "2020-07-28T10:51:47", "references": [{"idList": ["ELSA-2020-5767", "ELSA-2020-5765", "ELSA-2020-5766"], "type": "oraclelinux"}], "rev": 2}, "score": {"modified": "2020-07-28T10:51:47", "rev": 2, "value": 4.5, "vector": "NONE"}}, "hash": "8915bb0114adca20381922ed48696f0b57e4d996e9c9326641f6593fb1ae3ad1", "hashmap": [{"hash": "cb650c10eafb3d288f6a645c0a3dc0c2", "key": "cpe"}, {"hash": "d21ac811d9123f8b274b461d7e2281ad", "key": "cvss"}, {"hash": "15d167a69b84feb0847a8fcc9af95fb8", "key": "affectedSoftware"}, {"hash": "fbd137abf9089fd9bba9904b0e372a09", "key": "cvss2"}, {"hash": "53b787c1a7fc516c5bbfe32592cfaa6f", "key": "href"}, {"hash": "b93d2287578c9bbaf62061391ce3d8d3", "key": "published"}, {"hash": "8b7325d8e15e98cd1d0aec239c0fc0f8", "key": "title"}, {"hash": "33de0fd241c19f8e427af81e7de8f69f", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "0935e25d64ebefb40670c8519e5985d0", "key": "cvelist"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "9e410bbb23ca621e20d875b484e2b1f3", "key": "references"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "13b06983cd3016708082f7eb549d30aa", "key": "cwe"}, {"hash": "d003d27a79b85fa874be22d74d6f6010", "key": "description"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-8559", "id": "CVE-2020-8559", "lastseen": "2020-07-28T10:51:47", "modified": "2020-07-27T15:47:00", "objectVersion": "1.3", "published": "2020-07-22T14:15:00", "references": ["https://groups.google.com/d/msg/kubernetes-security-announce/JAIGG5yNROs/19nHQ5wkBwAJ", "https://github.com/kubernetes/kubernetes/issues/92914"], "reporter": "cve@mitre.org", "title": "CVE-2020-8559", "type": "cve", "viewCount": 15}, "differentElements": ["cpe", "affectedSoftware"], "edition": 3, "lastseen": "2020-07-28T10:51:47"}, {"bulletin": {"affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cvelist": ["CVE-2020-8559"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.", "edition": 2, "enchantments": {"dependencies": {"modified": "2020-07-24T10:49:22", "references": [{"idList": ["ELSA-2020-5767", "ELSA-2020-5765", "ELSA-2020-5766"], "type": "oraclelinux"}], "rev": 2}, "score": {"modified": "2020-07-24T10:49:22", "rev": 2, "value": 4.5, "vector": "NONE"}}, "hash": "e8202171844781051fede193fa17a8abf7eeb1ac064127c29a66e454bdc5c401", "hashmap": [{"hash": "53b787c1a7fc516c5bbfe32592cfaa6f", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "b93d2287578c9bbaf62061391ce3d8d3", "key": "published"}, {"hash": "8b7325d8e15e98cd1d0aec239c0fc0f8", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "cd4e58c3b6943e4380693924e7ecbb1e", "key": "modified"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "0935e25d64ebefb40670c8519e5985d0", "key": "cvelist"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "9e410bbb23ca621e20d875b484e2b1f3", "key": "references"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "d003d27a79b85fa874be22d74d6f6010", "key": "description"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-8559", "id": "CVE-2020-8559", "lastseen": "2020-07-24T10:49:22", "modified": "2020-07-23T15:15:00", "objectVersion": "1.3", "published": "2020-07-22T14:15:00", "references": ["https://groups.google.com/d/msg/kubernetes-security-announce/JAIGG5yNROs/19nHQ5wkBwAJ", "https://github.com/kubernetes/kubernetes/issues/92914"], "reporter": "cve@mitre.org", "title": "CVE-2020-8559", "type": "cve", "viewCount": 10}, "differentElements": ["cvss", "cvss2", "modified", "cpe", "cwe", "affectedSoftware"], "edition": 2, "lastseen": "2020-07-24T10:49:22"}, {"bulletin": {"affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cvelist": ["CVE-2020-8559"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.7 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.", "edition": 1, "enchantments": {"dependencies": {"modified": "2020-07-23T14:18:29", "references": [{"idList": ["ELSA-2020-5767", "ELSA-2020-5765", "ELSA-2020-5766"], "type": "oraclelinux"}], "rev": 2}, "score": {"modified": "2020-07-23T14:18:29", "rev": 2, "value": 4.5, "vector": "NONE"}}, "hash": "4cdd540190af83c096b33e6f08546b73a65a241ab3c7069040dfdf56e7c93d5b", "hashmap": [{"hash": "53b787c1a7fc516c5bbfe32592cfaa6f", "key": "href"}, {"hash": "df526e31efc4ac657efccc4ebd2d5804", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "b93d2287578c9bbaf62061391ce3d8d3", "key": "published"}, {"hash": "8b7325d8e15e98cd1d0aec239c0fc0f8", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "5adda3bb9b7223bbb4d85bf518012d7c", "key": "modified"}, {"hash": "0935e25d64ebefb40670c8519e5985d0", "key": "cvelist"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "9e410bbb23ca621e20d875b484e2b1f3", "key": "references"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-8559", "id": "CVE-2020-8559", "lastseen": "2020-07-23T14:18:29", "modified": "2020-07-22T16:33:00", "objectVersion": "1.3", "published": "2020-07-22T14:15:00", "references": ["https://groups.google.com/d/msg/kubernetes-security-announce/JAIGG5yNROs/19nHQ5wkBwAJ", "https://github.com/kubernetes/kubernetes/issues/92914"], "reporter": "cve@mitre.org", "title": "CVE-2020-8559", "type": "cve", "viewCount": 0}, "differentElements": ["description", "modified"], "edition": 1, "lastseen": "2020-07-23T14:18:29"}], "edition": 4, "hashmap": [{"key": "affectedSoftware", "hash": "d89a9937baa5207b834f9dce8fe17bad"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "91b9b15644f18753e252b73723205d9d"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvelist", "hash": "0935e25d64ebefb40670c8519e5985d0"}, {"key": "cvss", "hash": "d21ac811d9123f8b274b461d7e2281ad"}, {"key": "cvss2", "hash": "fbd137abf9089fd9bba9904b0e372a09"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "13b06983cd3016708082f7eb549d30aa"}, {"key": "description", "hash": "d003d27a79b85fa874be22d74d6f6010"}, {"key": "href", "hash": "53b787c1a7fc516c5bbfe32592cfaa6f"}, {"key": "modified", "hash": "33de0fd241c19f8e427af81e7de8f69f"}, {"key": "published", "hash": "b93d2287578c9bbaf62061391ce3d8d3"}, {"key": "references", "hash": "9e410bbb23ca621e20d875b484e2b1f3"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "8b7325d8e15e98cd1d0aec239c0fc0f8"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "8947408c78d30f39e60f5eb90f478fbf2f6f3a42a3054289114a7b68b49a8957", "viewCount": 15, "enchantments": {"dependencies": {"references": [{"type": "oraclelinux", "idList": ["ELSA-2020-5767", "ELSA-2020-5766", "ELSA-2020-5765"]}], "modified": "2020-08-08T11:55:52", "rev": 2}, "score": {"value": 4.5, "vector": "NONE", "modified": "2020-08-08T11:55:52", "rev": 2}, "vulnersScore": 4.5}, "objectVersion": "1.3", "cpe": ["cpe:/a:kubernetes:kubernetes:1.13.9", "cpe:/a:kubernetes:kubernetes:1.10.1", "cpe:/a:kubernetes:kubernetes:1.14.1", "cpe:/a:kubernetes:kubernetes:1.16.5", "cpe:/a:kubernetes:kubernetes:1.10.9", "cpe:/a:kubernetes:kubernetes:1.11.5", "cpe:/a:kubernetes:kubernetes:1.8.15", "cpe:/a:kubernetes:kubernetes:1.8.5", "cpe:/a:kubernetes:kubernetes:1.6.6", "cpe:/a:kubernetes:kubernetes:1.18.0", "cpe:/a:kubernetes:kubernetes:1.8.7", "cpe:/a:kubernetes:kubernetes:1.17.4", "cpe:/a:kubernetes:kubernetes:1.16.6", "cpe:/a:kubernetes:kubernetes:1.7.0", "cpe:/a:kubernetes:kubernetes:1.6.10", "cpe:/a:kubernetes:kubernetes:1.16.12", "cpe:/a:kubernetes:kubernetes:1.12.7", "cpe:/a:kubernetes:kubernetes:1.6.7", "cpe:/a:kubernetes:kubernetes:1.8.4", "cpe:/a:kubernetes:kubernetes:1.16.8", "cpe:/a:kubernetes:kubernetes:1.8.13", "cpe:/a:kubernetes:kubernetes:1.17.8", "cpe:/a:kubernetes:kubernetes:1.12.8", "cpe:/a:kubernetes:kubernetes:1.10.6", "cpe:/a:kubernetes:kubernetes:1.6.4", "cpe:/a:kubernetes:kubernetes:1.7.10", "cpe:/a:kubernetes:kubernetes:1.18.3", "cpe:/a:kubernetes:kubernetes:1.6.12", "cpe:/a:kubernetes:kubernetes:1.13.2", "cpe:/a:kubernetes:kubernetes:1.17.6", "cpe:/a:kubernetes:kubernetes:1.6.1", "cpe:/a:kubernetes:kubernetes:1.11.0", "cpe:/a:kubernetes:kubernetes:1.10.3", "cpe:/a:kubernetes:kubernetes:1.11.9", "cpe:/a:kubernetes:kubernetes:1.7.15", "cpe:/a:kubernetes:kubernetes:1.12.5", "cpe:/a:kubernetes:kubernetes:1.10.2", "cpe:/a:kubernetes:kubernetes:1.6.13", "cpe:/a:kubernetes:kubernetes:1.7.4", "cpe:/a:kubernetes:kubernetes:1.8.11", "cpe:/a:kubernetes:kubernetes:1.10.12", "cpe:/a:kubernetes:kubernetes:1.7.1", "cpe:/a:kubernetes:kubernetes:1.13.1", "cpe:/a:kubernetes:kubernetes:1.16.10", "cpe:/a:kubernetes:kubernetes:1.7.14", "cpe:/a:kubernetes:kubernetes:1.9.0", "cpe:/a:kubernetes:kubernetes:1.12.3", "cpe:/a:kubernetes:kubernetes:1.13.5", "cpe:/a:kubernetes:kubernetes:1.10.10", "cpe:/a:kubernetes:kubernetes:1.9.10", "cpe:/a:kubernetes:kubernetes:1.13.6", "cpe:/a:kubernetes:kubernetes:1.10.7", "cpe:/a:kubernetes:kubernetes:1.6.14", "cpe:/a:kubernetes:kubernetes:1.7.12", "cpe:/a:kubernetes:kubernetes:1.7.6", "cpe:/a:kubernetes:kubernetes:1.10.11", "cpe:/a:kubernetes:kubernetes:1.8.6", "cpe:/a:kubernetes:kubernetes:1.8.9", "cpe:/a:kubernetes:kubernetes:1.6.8", "cpe:/a:kubernetes:kubernetes:1.18.1", "cpe:/a:kubernetes:kubernetes:1.7.11", "cpe:/a:kubernetes:kubernetes:1.17.1", "cpe:/a:kubernetes:kubernetes:1.13.10", "cpe:/a:kubernetes:kubernetes:1.7.16", "cpe:/a:kubernetes:kubernetes:1.13.0", "cpe:/a:kubernetes:kubernetes:1.6.0", "cpe:/a:kubernetes:kubernetes:1.12.11", "cpe:/a:kubernetes:kubernetes:1.10.8", "cpe:/a:kubernetes:kubernetes:1.6.2", "cpe:/a:kubernetes:kubernetes:1.14.3", "cpe:/a:kubernetes:kubernetes:1.11.6", "cpe:/a:kubernetes:kubernetes:1.16.7", "cpe:/a:kubernetes:kubernetes:1.12.10", "cpe:/a:kubernetes:kubernetes:1.9.9", "cpe:/a:kubernetes:kubernetes:1.14.5", "cpe:/a:kubernetes:kubernetes:1.8.3", "cpe:/a:kubernetes:kubernetes:1.17.3", "cpe:/a:kubernetes:kubernetes:1.18.4", "cpe:/a:kubernetes:kubernetes:1.9.1", "cpe:/a:kubernetes:kubernetes:1.16.0", "cpe:/a:kubernetes:kubernetes:1.14.4", "cpe:/a:kubernetes:kubernetes:1.8.1", "cpe:/a:kubernetes:kubernetes:1.12.6", "cpe:/a:kubernetes:kubernetes:1.7.9", "cpe:/a:kubernetes:kubernetes:1.8.10", "cpe:/a:kubernetes:kubernetes:1.16.9", "cpe:/a:kubernetes:kubernetes:1.18.2", "cpe:/a:kubernetes:kubernetes:1.14.0", "cpe:/a:kubernetes:kubernetes:1.17.2", "cpe:/a:kubernetes:kubernetes:1.16.1", "cpe:/a:kubernetes:kubernetes:1.16.11", "cpe:/a:kubernetes:kubernetes:1.12.4", "cpe:/a:kubernetes:kubernetes:1.13.8", "cpe:/a:kubernetes:kubernetes:1.7.8", "cpe:/a:kubernetes:kubernetes:1.6.3", "cpe:/a:kubernetes:kubernetes:1.10.4", "cpe:/a:kubernetes:kubernetes:1.11.8", "cpe:/a:kubernetes:kubernetes:1.12.9", "cpe:/a:kubernetes:kubernetes:1.6.11", "cpe:/a:kubernetes:kubernetes:1.14.7", "cpe:/a:kubernetes:kubernetes:1.7.3", "cpe:/a:kubernetes:kubernetes:1.7.13", "cpe:/a:kubernetes:kubernetes:1.9.7", "cpe:/a:kubernetes:kubernetes:1.9.11", "cpe:/a:kubernetes:kubernetes:1.12.0", "cpe:/a:kubernetes:kubernetes:1.9.3", "cpe:/a:kubernetes:kubernetes:1.10.13", "cpe:/a:kubernetes:kubernetes:1.9.6", "cpe:/a:kubernetes:kubernetes:1.11.3", "cpe:/a:kubernetes:kubernetes:1.7.7", "cpe:/a:kubernetes:kubernetes:1.6.9", "cpe:/a:kubernetes:kubernetes:1.11.2", "cpe:/a:kubernetes:kubernetes:1.10.0", "cpe:/a:kubernetes:kubernetes:1.8.2", "cpe:/a:kubernetes:kubernetes:1.15.0", "cpe:/a:kubernetes:kubernetes:1.9.12", "cpe:/a:kubernetes:kubernetes:1.11.1", "cpe:/a:kubernetes:kubernetes:1.9.4", "cpe:/a:kubernetes:kubernetes:1.7.5", "cpe:/a:kubernetes:kubernetes:1.14.2", "cpe:/a:kubernetes:kubernetes:1.11.4", "cpe:/a:kubernetes:kubernetes:1.11.7", "cpe:/a:kubernetes:kubernetes:1.9.8", "cpe:/a:kubernetes:kubernetes:1.16.4", "cpe:/a:kubernetes:kubernetes:1.8.12", "cpe:/a:kubernetes:kubernetes:1.6.5", "cpe:/a:kubernetes:kubernetes:1.17.7", "cpe:/a:kubernetes:kubernetes:1.14.6", "cpe:/a:kubernetes:kubernetes:1.8.14", "cpe:/a:kubernetes:kubernetes:1.17.0", "cpe:/a:kubernetes:kubernetes:1.13.4", "cpe:/a:kubernetes:kubernetes:1.7.2", "cpe:/a:kubernetes:kubernetes:1.8.0", "cpe:/a:kubernetes:kubernetes:1.9.2", "cpe:/a:kubernetes:kubernetes:1.18.5", "cpe:/a:kubernetes:kubernetes:1.8.16", "cpe:/a:kubernetes:kubernetes:1.12.2", "cpe:/a:kubernetes:kubernetes:1.13.7", "cpe:/a:kubernetes:kubernetes:1.10.5", "cpe:/a:kubernetes:kubernetes:1.13.3", "cpe:/a:kubernetes:kubernetes:1.9.5", "cpe:/a:kubernetes:kubernetes:1.12.1", "cpe:/a:kubernetes:kubernetes:1.16.2", "cpe:/a:kubernetes:kubernetes:1.7.17", "cpe:/a:kubernetes:kubernetes:1.16.3", "cpe:/a:kubernetes:kubernetes:1.17.5", "cpe:/a:kubernetes:kubernetes:1.14.8", "cpe:/a:kubernetes:kubernetes:1.8.8"], "affectedSoftware": [{"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.13"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.16"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.18.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.16"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.18.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.18.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.14"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.14"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.14"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.11.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.18.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.15"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.15"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.11"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.17.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.12"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.8.13"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.7"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.15.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.1"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.13"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.4"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.14.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.18.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.9.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.18.5"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.13"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.13.6"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.6.10"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.16.3"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.8"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.10.9"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.12.0"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.17"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.2"}, {"name": "kubernetes kubernetes", "operator": "eq", "version": "1.7.7"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cpe23": [], "cwe": ["CWE-601"], "scheme": null}

{"oraclelinux": [{"lastseen": "2020-07-28T11:33:46", "bulletinFamily": "unix", "description": "[1.12.10-1.0.13]\n- CVE-2020-8559: Privilege escalation from compromised node to cluster\n- CVE-2020-8557: Node disk DOS by writing to container /etc/hosts", "modified": "2020-07-22T00:00:00", "published": "2020-07-22T00:00:00", "id": "ELSA-2020-5767", "href": "http://linux.oracle.com/errata/ELSA-2020-5767.html", "title": "kubernetes security update", "type": "oraclelinux", "cvss": {"score": 6.0, "vector": "AV:N/AC:M/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2020-07-28T11:33:39", "bulletinFamily": "unix", "description": "kernel-uek-container\n[4.14.35-1902.303.5.3.el7]\n- rds: Deregister all FRWR mr with free_mr (Hans Westgaard Ry) [Orabug: 31476202]\n- Revert 'rds: Do not cancel RDMAs that have been posted to the HCA' (Gerd Rausch) [Orabug: 31475329]\n- Revert 'rds: Introduce rds_conn_to_path helper' (Gerd Rausch) [Orabug: 31475329]\n- Revert 'rds: Three cancel fixes' (Gerd Rausch) [Orabug: 31475318]\n[4.14.35-1902.303.5.2.el7]\n- rds: Three cancel fixes (Hakon Bugge) [Orabug: 31463014]\n[4.14.35-1902.303.5.1.el7]\n- x86/speculation: Add SRBDS vulnerability and mitigation documentation (Mark Gross) [Orabug: 31446720] {CVE-2020-0543}\n- x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation (Mark Gross) [Orabug: 31446720] {CVE-2020-0543}\n- x86/cpu: Add 'table' argument to cpu_matches() (Mark Gross) [Orabug: 31446720] {CVE-2020-0543}\n- x86/cpu: Add a steppings field to struct x86_cpu_id (Mark Gross) [Orabug: 31446720] {CVE-2020-0543}\n[4.14.35-1902.303.5.el7]\n- net/mlx5: Decrease default mr cache size (Artemy Kovalyov) [Orabug: 31446379]\n[4.14.35-1902.303.4.el7]\n- net/rds: suppress memory allocation failure reports (Manjunath Patil) [Orabug: 31422157]\n- rds: Do not cancel RDMAs that have been posted to the HCA (Hakon Bugge) [Orabug: 31422151]\n- rds: Introduce rds_conn_to_path helper (Hakon Bugge) [Orabug: 31422151]\n- xen/manage: enable C_A_D to force reboot (Dongli Zhang) [Orabug: 31422147]\nkata-image\n[1.7.3-1.0.5.1]\n- Address Kata CVE 2023\nkata-runtime\n[1.7.3-1.0.5]\n- Address Kata CVE-2020-2023\n- Address Kata CVE-2020-2024\n- Address Kata CVE-2020-2025\n- Address Kata CVE-2020-2026\nkata\n[1.7.3-1.0.7]\n- Address CVE-2020-2023\n- Address CVE-2020-2024\n- Address CVE-2020-2025\n- Address CVE-2020-2026\nkubernetes\n[1.14.9-1.0.6]\n- CVE-2020-8559: Privilege escalation from compromised node to cluster\n- CVE-2020-8557: Node disk DOS by writing to container /etc/hosts\n[1.14.9-1.0.5]\n- Update dependency on Kata containers to a build that includes fixes for CVE-2020-2023 thru CVE-2020-2026\nolcne\n[1.0.5-3]\n- update registry image mirroring script\n[1.0.5-2]\n- CVE-2020-8559: Privilege escalation from compromised node to cluster\n- CVE-2020-8557: Node disk DOS by writing to container /etc/hosts\n- Update bootstrap scripts\n[1.0.5-1]\n- Update Kata Containers to address CVEs 2020-2023 thru 2020-2026", "modified": "2020-07-22T00:00:00", "published": "2020-07-22T00:00:00", "id": "ELSA-2020-5766", "href": "http://linux.oracle.com/errata/ELSA-2020-5766.html", "title": "Unbreakable Enterprise kernel-container kata-image kata-runtime kata kubernetes olcne security update", "type": "oraclelinux", "cvss": {"score": 6.0, "vector": "AV:N/AC:M/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2020-07-23T05:32:14", "bulletinFamily": "unix", "description": "kernel-uek-container\n[4.14.35-1902.303.5.3.el7]\n- rds: Deregister all FRWR mr with free_mr (Hans Westgaard Ry) [Orabug: 31476202]\n- Revert 'rds: Do not cancel RDMAs that have been posted to the HCA' (Gerd Rausch) [Orabug: 31475329]\n- Revert 'rds: Introduce rds_conn_to_path helper' (Gerd Rausch) [Orabug: 31475329]\n- Revert 'rds: Three cancel fixes' (Gerd Rausch) [Orabug: 31475318]\n[4.14.35-1902.303.5.2.el7]\n- rds: Three cancel fixes (Hakon Bugge) [Orabug: 31463014]\n[4.14.35-1902.303.5.1.el7]\n- x86/speculation: Add SRBDS vulnerability and mitigation documentation (Mark Gross) [Orabug: 31446720] {CVE-2020-0543}\n- x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation (Mark Gross) [Orabug: 31446720] {CVE-2020-0543}\n- x86/cpu: Add 'table' argument to cpu_matches() (Mark Gross) [Orabug: 31446720] {CVE-2020-0543}\n- x86/cpu: Add a steppings field to struct x86_cpu_id (Mark Gross) [Orabug: 31446720] {CVE-2020-0543}\n[4.14.35-1902.303.5.el7]\n- net/mlx5: Decrease default mr cache size (Artemy Kovalyov) [Orabug: 31446379]\n[4.14.35-1902.303.4.el7]\n- net/rds: suppress memory allocation failure reports (Manjunath Patil) [Orabug: 31422157]\n- rds: Do not cancel RDMAs that have been posted to the HCA (Hakon Bugge) [Orabug: 31422151]\n- rds: Introduce rds_conn_to_path helper (Hakon Bugge) [Orabug: 31422151]\nkata-image\n[1.7.3-1.0.5.1]\n- Address Kata CVE 2023\nkata-runtime\n[1.7.3-1.0.5]\n- Address Kata CVE-2020-2023\n- Address Kata CVE-2020-2024\n- Address Kata CVE-2020-2025\n- Address Kata CVE-2020-2026\nkata\n[1.7.3-1.0.7]\n- Address CVE-2020-2023\n- Address CVE-2020-2024\n- Address CVE-2020-2025\n- Address CVE-2020-2026\nkubernetes\n[1.14.9-1.0.6]\n- CVE-2020-8559: Privilege escalation from compromised node to cluster\n- CVE-2020-8557: Node disk DOS by writing to container /etc/hosts\n[1.14.9-1.0.5]\n- Update dependency on Kata containers to a build that includes fixes for CVE-2020-2023 thru CVE-2020-2026\nkubernetes\n[1.17.9-1.0.1.el7]\n- Added Oracle specific build files for Kubernetes\nistio\n[1.4.10-1.0.1]\n- CVE-2020-15104:\n Incorrect validation of wildcard DNS Subject Alternative Names\n[1.4.10-1.0.0]\n- Added Oracle Specific Build Files for istio/istio\nolcne\n[1.1.2-6]\n- Include kata-runtime in the default template\n[1.1.2-5]\n- CVE-2020-8559: Privilege escalation from compromised node to cluster\n- CVE-2020-8557: Node disk DOS by writing to container /etc/hosts\n[1.1.2-4]\n- Update arguments added for istio module.\n[1.1.2-3]\n- Ensure Istio sidecar injector uses valid executable\n[1.1.2-2]\n- Update Kubernetes to use Kata 1.7.3-1.0.7 to address CVE-2020-2023 thru CVE-2020-2026\n[1.1.2-1]\n- Added istio-1.4.10 charts and updated istio.yaml to use istio-1.4.10", "modified": "2020-07-22T00:00:00", "published": "2020-07-22T00:00:00", "id": "ELSA-2020-5765", "href": "http://linux.oracle.com/errata/ELSA-2020-5765.html", "title": "Unbreakable Enterprise kernel-container kata-image kata-runtime kata kubernetes kubernetes istio olcne security update", "type": "oraclelinux", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}]}