Lucene search

CVE-2023-23939

🗓️ 06 Mar 2023 19:10:15Reported by GitHub_MType

Azure/setup-kubectl GitHub Action vulnerability (CVE-2023-23939) - Insecure file creation allows privilege escalatio

Reporter	Title	Published	Views	Family All 7
OSV	Azure/setup-kubectl: Escalation of privilege vulnerability for v3 and lower	7 Mar 202320:07	–	osv
OSV	CVE-2023-23939	6 Mar 202319:15	–	osv
Github Security Blog	Azure/setup-kubectl: Escalation of privilege vulnerability for v3 and lower	7 Mar 202320:07	–	github
Prion	Privilege escalation	6 Mar 202319:15	–	prion
Vulnrichment	CVE-2023-23939 Azure/setup-kubectl: Escalation of privilege vulnerability for v3 and lower	6 Mar 202318:19	–	vulnrichment
NVD	CVE-2023-23939	6 Mar 202319:15	–	nvd
Cvelist	CVE-2023-23939 Azure/setup-kubectl: Escalation of privilege vulnerability for v3 and lower	6 Mar 202318:19	–	cvelist

Nvd

Node

microsoft azure_setup_kubectlRange<3.0

[
  {
    "vendor": "Azure",
    "product": "setup-kubectl",
    "versions": [
      {
        "version": "< 3",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/Azure/setup-kubectl/security/advisories/GHSA-p756-rfxh-x63h
github	www.github.com/Azure/setup-kubectl/commit/d449d75495d2b9d1463555bb00ca3dca77a42ab6

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Mar 2023 19:15Current

5.6Medium risk

Vulners AI Score5.6

CVSS33.9 - 7

EPSS0.00068

SSVC

CWE-732