Lucene search

Exploit for Improper Authentication in Kubernetes

🗓️ 09 Jul 2020 06:07:56Type

CVE-2020-8558 Kubernetes vulnerability due to kube-proxy setting `net.ipv4.conf.all.route_localnet=1`, making localhost-bound host services accessible to others on the network. The fix is released in kubelet >= 1.18.4, 1.17.7, or 1.16.11

Reporter	Title	Published	Views	Family All 47
ALT Linux	Security fix for the ALT Linux 10 package kubernetes version 1.18.5-alt1	2 Jul 202000:00	–	altlinux
GitLab Advisory Database	Improper Authentication	15 Feb 202200:00	–	gitlab
GitLab Advisory Database	Improper Authentication	27 Jul 202000:00	–	gitlab
GitLab Advisory Database	Improper Authentication in Kubernetes	15 Feb 202200:00	–	gitlab
IBM Security Bulletins	Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a Kubernetes kubelet and kube-proxy security vulnerability (CVE-2020-8558)	25 Aug 202008:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Kubernetes Service is affected by a Kubernetes kubelet and kube-proxy security vulnerability (CVE-2020-8558)	16 Jul 202017:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Private is vulnerable to Kubernetes vulnerabilities	26 Feb 202114:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Kubernetes affect IBM InfoSphere Information Server	1 Apr 202120:53	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in the Python, Docker, and ICP affect IBM Spectrum Discover	13 May 202116:56	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps	12 Feb 202517:49	–	ibm

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jul 2020 06:56Current

8.7High risk

Vulners AI Score8.7

EPSS0.00093