Security Bulletin: IBM Cloud Kubernetes Service is affected by Kubernetes API server security vulnerabilities (CVE-2023-39325 and CVE-2023-44487)

🗓️ 08 Dec 2023 08:16:43Reported by IBMType

ibm🔗 www.ibm.com👁 29 Views

IBM Cloud Kubernetes Service affected by CVE-2023-39325 & CVE-2023-44487. Vulnerabilities allow unauthenticated clients to perform denial of service attacks. Updates are available for affected versions 1.5-1.28.3 to fix the vulnerabilities

Reporter	Title	Published	Views	Family All 199
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.20 (SUSE-SU-2023:4068-1)	14 Oct 202300:00	–	nessus
Tenable Nessus	RHEL 8 : grafana (RHSA-2023:5865)	19 Oct 202300:00	–	nessus
Tenable Nessus	RHEL 8 : grafana (RHSA-2023:5863)	19 Oct 202300:00	–	nessus
Tenable Nessus	Rocky Linux 8 : go-toolset:rhel8 (RLSA-2023:5721)	24 Oct 202300:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.21 (SUSE-SU-2023:4069-1)	14 Oct 202300:00	–	nessus
Tenable Nessus	RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.3 Product Security and Bug Fix Update (Important) (RHSA-2023:5810)	28 Apr 202400:00	–	nessus
Tenable Nessus	RHEL 8 / 9 : skupper-cli and skupper-router (RHSA-2023:6165)	28 Apr 202400:00	–	nessus
Tenable Nessus	RHEL 9 : openshift-gitops-kam (RHSA-2023:7344)	28 Apr 202400:00	–	nessus
Tenable Nessus	RHEL 7 / 8 / 9 : OpenShift Virtualization 4.13.6 RPMs (RHSA-2023:7521)	28 Apr 202400:00	–	nessus
Tenable Nessus	RHEL 8 : openshift-gitops-kam (RHSA-2023:6243)	28 Apr 202400:00	–	nessus

Vulners

Node

ibm ibm_cloud_kubernetes_service_and_red_hat_openshift_on_ibm_cloudMatchany

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Dec 2023 08:43Current

8.1High risk

Vulners AI Score8.1

CVSS37.5

EPSS0.91023