Lucene search

CVE-2022-23508

🗓️ 09 Jan 2023 13:10:15Reported by GoogleType

osv🔗 osv.dev👁 9 Views

Weave GitOps vulnerability allows local user to alter Kubernetes cluster resource

Reporter	Title	Published	Views	Family All 10
Cvelist	CVE-2022-23508 GitOps Run allows for Kubernetes workload injection	9 Jan 202312:56	–	cvelist
OSV	GitOps Run allows for Kubernetes workload injection	9 Jan 202319:45	–	osv
OSV	GitOps Run allows for Kubernetes workload injection in github.com/weaveworks/weave-gitops	20 Aug 202420:25	–	osv
OSV	Gitops Run insecure communication	9 Jan 202319:45	–	osv
Prion	Memory corruption	9 Jan 202313:15	–	prion
NVD	CVE-2022-23508	9 Jan 202313:15	–	nvd
Veracode	Workload Injection	12 Jan 202305:46	–	veracode
Github Security Blog	GitOps Run allows for Kubernetes workload injection	9 Jan 202319:45	–	github
Github Security Blog	Gitops Run insecure communication	9 Jan 202319:45	–	github
CVE	CVE-2022-23508	9 Jan 202313:15	–	cve

Source	Link
github	www.github.com/weaveworks/weave-gitops/security/advisories/GHSA-wr3c-g326-486c
github	www.github.com/weaveworks/weave-gitops/pull/3102/commits/966823bbda8c539a4661e2a4f8607c9307ba6225
github	www.github.com/weaveworks/weave-gitops/pull/3114/commits/75268c4d2c8f7e4db22c63d76b451ba6545d117f

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jan 2023 13:15Current

7.6High risk

Vulners AI Score7.6

EPSS0.0004