Lucene search
Https://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-7701874497DC7EDD1A6C92207871CC7EHistoryJan 14, 2023 - 12:00 a.m.
Missing Authorization
2023-01-1400:00:00
https://gitlab.com/gitlab-org/security-products/gemnasium-db
gitlab.com
7
kubepi
kubernetes
unauthorized api
sensitive information
patch
version 1.6.4
0.137 Low
EPSS
Percentile
95.7%
KubePi is a modern Kubernetes panel. The API interfaces with unauthorized entities and may leak sensitive information. This issue has been patched in version 1.6.4. There are currently no known workarounds.
| CPE | Name | Operator | Version |
|---|---|---|---|
| go/github.com/kubeoperator/kubepi | lt | v1.6.4 |
Related
github
github
KubePi may allow unauthorized access to system API
2023-01-09 21:56:09
gitlab
gitlab
Duplicate of ./go/github.com/KubeOperator/KubePi/CVE-2023-22478.yml
2023-01-09 00:00:00
Missing Authorization
2023-01-14 00:00:00
nvd
nvd
CVE-2023-22478
2023-01-14 01:15:14
nuclei
nuclei
KubePi <= v1.6.4 LoginLogsSearch - Unauthorized Access
2023-08-05 09:03:01
osv
osv
CVE-2023-22478
2023-01-14 01:15:14
KubePi may allow unauthorized access to system API
2023-01-09 21:56:09
cvelist
cvelist
CVE-2023-22478 KubePi is vulnerable to missing authorization
2023-01-14 00:22:54
cve
cve
CVE-2023-22478
2023-01-14 01:15:14
veracode
veracode
Improper Access Control
2023-01-19 02:59:46
prion
prion
Information disclosure
2023-01-14 01:15:00