Critical: Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.1.8 security updates and bug fixes

🗓️ 05 Sep 2023 13:04:09Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 59 Views

Multicluster Engine for Kubernetes 2.1.8 sec update

Reporter	Title	Published	Views	Family All 108
0day.today	vm2 - Sandbox Escape Exploit	18 Mar 202400:00	–	zdt
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise is vulnerable to a remote attack and a denial of service due to Node.js modules protobuf.js, vm2 and word-wrap [CVE-2023-36665, CVE-2023-37903, CVE-2023-37466 and CVE-2023-26115]	11 Sep 202316:26	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container operands that use the Box or Snowflake connectors are vulnerable to arbitrary code execution due to [CVE-2023-37466], [CVE-2023-37903]	24 Aug 202315:07	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Instana Observability for Synthetic PoP is affected by vulnerabilities in vm2	15 Mar 202413:58	–	ibm
GithubExploit	Exploit for OS Command Injection in Vm2_Project Vm2	5 Nov 202311:23	–	githubexploit
ATTACKERKB	CVE-2023-3089	5 Jul 202313:15	–	attackerkb
ATTACKERKB	CVE-2026-24120	4 May 202616:31	–	attackerkb
Circl	CVE-2023-3089	5 Jul 202316:11	–	circl
Circl	CVE-2023-37466	12 Jul 202312:40	–	circl
Circl	CVE-2023-37903	5 Nov 202311:27	–	circl

Source	Link
access	www.access.redhat.com/security/updates/classification/
access	www.access.redhat.com/security/vulnerabilities/RHSB-2023-001
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

02 Jun 2026 14:55Current

7.2High risk

Vulners AI Score7.2

CVSS 3.19.8 - 10

EPSS0.36936

SSVC

rhsa-2023-4972 multicluster kubernetes security cve-2023-3089 cve-2023-37903 cve-2023-37466 images