Lucene search
HistoryMar 03, 2023 - 4:15 p.m.
CVE-2022-2837
coredns
traffic redirection
cve-2022-2837
tld
pod control
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.1
Confidence
High
EPSS
0.001
Percentile
31.0%
A flaw was found in coreDNS. This flaw allows a malicious user to redirect traffic intended for external top-level domains (TLD) to a pod they control by creating projects and namespaces that match the TLD.
Affected configurations
Node
coredns.iocorednsMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| coredns.io | coredns | - | cpe:2.3:a:coredns.io:coredns:-:*:*:*:*:*:*:* |
Related
osv
osv
CGA-q3h5-h64q-p5xg
2024-06-06 12:28:55
CGA-gprw-crxv-m54h
2024-06-06 12:25:59
github
github
cvelist
cvelist
CVE-2022-2837
2023-03-03 00:00:00
cgr
cgr
CVE-2022-2837 vulnerabilities
2024-05-19 03:07:16
prion
prion
Design/Logic Flaw
2023-03-03 16:15:00
redhatcve
redhatcve
CVE-2022-2837
2022-08-16 09:08:12
cve
cve
CVE-2022-2837
2023-03-03 16:15:09
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.1
Confidence
High
EPSS
0.001
Percentile
31.0%
Related for NVD:CVE-2022-2837