Lucene search
+L

55 matches found

cgr
cgr
added 2024/12/02 5:15 p.m.12 views

CVE-2024-53259 vulnerabilities

Vulnerabilities for packages: frp, buf, spegel, eks-distro-fips, caddy, cloudflared, caddy-fips, kubernetes-dns-node-cache, kubernetes-dns-node-cache-fips, coredns-fips, k3s, traefik-fips, traefik, q, eks-distro, coredns...

6.5CVSS6.6AI score0.00608EPSS
Exploits0
osv
osv
added 2024/08/21 3:29 p.m.17 views

GO-2022-0845 Local Privilege Escalation in cloudflared in github.com/cloudflare/cloudflared

Local Privilege Escalation in cloudflared in github.com/cloudflare/cloudflared...

7.8CVSS7.6AI score0.00348EPSS
Exploits0References3
osv
osv
added 2024/08/20 8:29 p.m.34 views

GO-2023-1652 cloudflared's Installer has Local Privilege Escalation Vulnerability in github.com/cloudflare/cloudflared

cloudflared's Installer has Local Privilege Escalation Vulnerability in github.com/cloudflare/cloudflared...

7.8CVSS7.5AI score0.00259EPSS
Exploits0References4
wolfi
wolfi
added 2024/04/25 6:30 p.m.19 views

GHSA-M9W6-WP3H-VQ8G vulnerabilities

Vulnerabilities for packages: cloudflared, juicefs, kubernetes-dns-node-cache...

6.1AI score
Exploits0
wolfi
wolfi
added 2024/04/25 5:15 p.m.190 views

CVE-2024-0874 vulnerabilities

Vulnerabilities for packages: cloudflared, juicefs, kubernetes-dns-node-cache...

5.3CVSS6.2AI score0.0076EPSS
Exploits0
wolfi
wolfi
added 2024/04/04 3:15 p.m.39 views

CVE-2024-22189 vulnerabilities

Vulnerabilities for packages: cloudflared, caddy, q, k3s, coredns...

7.5CVSS7AI score0.011EPSS
Exploits0
wolfi
wolfi
added 2024/04/02 2:16 p.m.22 views

GHSA-C33X-XQRF-C478 vulnerabilities

Vulnerabilities for packages: cloudflared, caddy, q, k3s, coredns...

6.1AI score
Exploits0
wolfi
wolfi
added 2024/03/09 1:15 a.m.59 views

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: flux-kustomize-controller, fulcio, kubernetes-dashboard, gitsign, policy-controller, rabbitmq-messaging-topology-operator, minio, terragrunt, oauth2-proxy, tkn, aactl, falco, grpc-health-probe, dgraph, cosign, falcoctl, kargo, vexctl, dex, skopeo, apko, weaviate, kot...

4.3CVSS6.6AI score0.01956EPSS
Exploits0
cgr
cgr
added 2024/03/06 12:31 a.m.122 views

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: temporal-server, up, zot, contour, cilium, falcosidekick, kaf, sops, kubernetes-csi-external-resizer, vertical-pod-autoscaler, bank-vaults, pulumi-kubernetes-operator, thanos, metacontroller, cadvisor, aws-flb-kinesis-fips, secrets-store-csi-driver-provider-gcp, kots...

6.1AI score
Exploits0
cgr
cgr
added 2024/03/05 11:15 p.m.80 views

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: temporal-server, up, zot, contour, cilium, falcosidekick, kaf, sops, kubernetes-csi-external-resizer, vertical-pod-autoscaler, bank-vaults, pulumi-kubernetes-operator, thanos, metacontroller, cadvisor, aws-flb-kinesis-fips, secrets-store-csi-driver-provider-gcp, kots...

7.5CVSS6.7AI score0.01262EPSS
Exploits0
wolfi
wolfi
added 2023/11/21 10:17 p.m.552 views

GHSA-2C7C-3MJ9-8FQH vulnerabilities

Vulnerabilities for packages: flux-kustomize-controller, fulcio, gitsign, terragrunt, oauth2-proxy, tkn, aactl, falco, cosign, vexctl, dex, kots, kubescape, slsa-verifier, cloudflared, sops, argo-workflows, rekor, spire-server, flux-source-controller, tekton-chains...

6.1AI score
Exploits0
thn
thn
added 2023/08/08 12:22 p.m.36 views

Hackers Abusing Cloudflare Tunnels for Covert Communications

New research has revealed that threat actors are abusing Cloudflare Tunnels to establish covert communication channels from compromised hosts and retain persistent access. "Cloudflared is functionally very similar to ngrok," Nic Finn, a senior threat intelligence analyst at GuidePoint Security,...

6.2AI score
Exploits0
cnnvd
cnnvd
added 2023/05/12 12:0 a.m.8 views

cloudflared 输入验证错误漏洞

Cloudflare cloudflared is a cloud server security management platform from American company Cloudflare. The platform provides firewall analysis, cache control, role-based access, and more. A security vulnerability exists in versions prior to cloudflared v1.20230419.0, which stems from an...

8.1CVSS7.7AI score0.00617EPSS
Exploits0References3
veracode
veracode
added 2023/03/25 2:8 a.m.28 views

Privilege Escalation

github.com/cloudflare/cloudflared is vulnerable to Privilege Escalation. A local attacker with no administrative permissions may use symbolic links to manipulate the MSI installer's repair functionality to delete important system files or replace them with malicious files, potentially leading to...

7.8CVSS7.2AI score0.00259EPSS
Exploits0References5Affected Software1
osv
osv
added 2023/03/21 10:32 p.m.21 views

GHSA-7MJV-X3JF-545X cloudflared's Installer has Local Privilege Escalation Vulnerability

Impact A vulnerability has been discovered in cloudflared's installer = 2023.3.0 for Windows 32-bits devices that allows a local attacker with no administrative permissions to escalate their privileges on the affected device. This vulnerability exists because the MSI installer used by cloudflared...

7.5CVSS7.5AI score0.00259EPSS
Exploits0References5
github
github
added 2023/03/21 10:32 p.m.37 views

cloudflared's Installer has Local Privilege Escalation Vulnerability

Impact A vulnerability has been discovered in cloudflared's installer = 2023.3.0 for Windows 32-bits devices that allows a local attacker with no administrative permissions to escalate their privileges on the affected device. This vulnerability exists because the MSI installer used by cloudflared...

7.8CVSS7.2AI score0.00259EPSS
Exploits0References5Affected Software1
nvd
nvd
added 2023/03/21 12:15 p.m.43 views

CVE-2023-1314

A vulnerability has been discovered in cloudflared's installer = 2023.3.0 for Windows 32-bits devices that allows a local attacker with no administrative permissions to escalate their privileges on the affected device. This vulnerability exists because the MSI installer used by cloudflared relied...

7.8CVSS7.5AI score0.00259EPSS
Exploits0References2
prion
prion
added 2023/03/21 12:15 p.m.31 views

Design/Logic Flaw

A vulnerability has been discovered in cloudflared's installer = 2023.3.0 for Windows 32-bits devices that allows a local attacker with no administrative permissions to escalate their privileges on the affected device. This vulnerability exists because the MSI installer used by cloudflared relied...

4.3CVSS7.7AI score0.00259EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2023/03/21 11:1 a.m.8 views

CVE-2023-1314 Local Privilege Escalation Vulnerability in cloudflared's Installer

A vulnerability has been discovered in cloudflared's installer = 2023.3.0 for Windows 32-bits devices that allows a local attacker with no administrative permissions to escalate their privileges on the affected device. This vulnerability exists because the MSI installer used by cloudflared relied...

7.5CVSS7.6AI score0.00259EPSS
Exploits0References2
osv
osv
added 2023/03/21 11:1 a.m.20 views

CVE-2023-1314 Local Privilege Escalation Vulnerability in cloudflared's Installer

A vulnerability has been discovered in cloudflared's installer = 2023.3.0 for Windows 32-bits devices that allows a local attacker with no administrative permissions to escalate their privileges on the affected device. This vulnerability exists because the MSI installer used by cloudflared relied...

7.5CVSS6.9AI score0.00259EPSS
Exploits0References5
Rows per page
Query Builder