CVE-2018-1002102

creationtimestamp| type| source ---|---|--- 2024-03-07 15:41:39+00:00| seen| https://t.me/ctinow/202498...

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a Kubernetes API server security vulnerability (CVE-2018-1002102)

Summary Red Hat OpenShift on IBM Cloud is affected by a security vulnerability in the Kubernetes API server that allows a compromised node to redirect API server requests from streaming endpoints to arbitrary hosts CVE-2018-1002102 Vulnerability Details CVEID: CVE-2018-1002102 Description: Improp...

RHEL 7 : OpenShift Container Platform 3.11.346 (RHSA-2020:5363)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5363 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 3.11.346 security and bug fix update

Red Hat OpenShift Container Platform release 3.11.346 is now available with updates to packages and images that fix several bugs. This release includes a security update for Kubernetes for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a securi...

Fedora 31 : kubernetes (2020-943f4b03d2)

Update to v1.15.7 CVE-2018-1002102 kubernetes: improper validation of URL redirection in the Kubernetes API server allows an attacker-controlled Kubelet to redirect API server requests from streaming endpoints Note that Tenable Network Security has extracted the preceding description block direct...

Fedora Update for kubernetes FEDORA-2020-943f4b03d2

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2018-1002102

Improper validation of URL redirection in the Kubernetes API server in versions prior to v1.14.0 allows an attacker-controlled Kubelet to redirect API server requests from streaming endpoints to arbitrary hosts. Impacted API servers will follow the redirect as a GET request with client-certificat...

CVE-2018-1002102

Improper validation of URL redirection in the Kubernetes API server in versions prior to v1.14.0 allows an attacker-controlled Kubelet to redirect API server requests from streaming endpoints to arbitrary hosts. Impacted API servers will follow the redirect as a GET request with client-certificat...

CVE-2018-1002102

CVE-2018-1002102 involves improper validation of URL redirection in the Kubernetes API server before v1.14.0. An attacker-controlled Kubelet could cause the API server to redirect streaming endpoint requests to arbitrary hosts, and the API server would follow the redirect as a GET with client-cer...

CVE-2018-1002102 Kubernetes API server follows unvalidated redirects from streaming Kubelet endpoints

Improper validation of URL redirection in the Kubernetes API server in versions prior to v1.14.0 allows an attacker-controlled Kubelet to redirect API server requests from streaming endpoints to arbitrary hosts. Impacted API servers will follow the redirect as a GET request with client-certificat...

Kubernetes API Server CVE-2018-1002102 Open Redirection Vulnerability

Description Kubernetes API Server is prone to an open-redirection vulnerability. An attacker can leverage this issue by constructing a crafted URI and enticing a user to follow it. When an unsuspecting victim follows the link, they may be redirected to an attacker-controlled site; this may aid in...