Lucene search
K

4 matches found

Circl
Circl
added 2024/09/12 7:48 p.m.7 views

CVE-2024-6840

creationtimestamp| type| source ---|---|--- 2024-09-12 19:48:05+00:00| seen| https://t.me/cvedetector/5501...

6.6CVSS6.5AI score0.00428EPSS
Exploits0References1
Prion
Prion
added 2024/09/12 5:15 p.m.16 views

CVE-2024-6840

An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via automountServiceAccountToken: true, resulting in privilege escalation to a service account...

0.00428EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/09/12 4:35 p.m.46 views

CVE-2024-6840 Automation-controller: gain access to the k8s api server via job execution with container group

An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via automountServiceAccountToken: true, resulting in privilege escalation to a service account...

6.6CVSS0.00428EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/09/05 2:13 p.m.53 views

Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.7AI score0.28637EPSS
Exploits2References13
Rows per page
Query Builder