Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

686 matches found

OpenVAS
OpenVASadded 2023/03/08 12:0 a.m.24 views

Debian: Security Advisory (DSA-3426)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7.6AI score0.01847EPSS
Exploits0References2
Prion
Prionadded 2023/03/01 7:15 p.m.14 views

Input validation

Users may have access to secure endpoints in the control plane network. Kubernetes clusters are only affected if an untrusted user can modify Node objects and send proxy requests to them. Kubernetes supports node proxying, which allows clients of kube-apiserver to access endpoints of a Kubelet to...

6.5CVSS8.4AI score0.00693EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2023/03/01 7:15 p.m.22 views

Authorization

Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions...

4CVSS6.8AI score0.01025EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2023/03/01 12:0 a.m.21 views

CVE-2022-3294 Node address isn't always verified when proxying

Users may have access to secure endpoints in the control plane network. Kubernetes clusters are only affected if an untrusted user can modify Node objects and send proxy requests to them. Kubernetes supports node proxying, which allows clients of kube-apiserver to access endpoints of a Kubelet to...

6.6CVSS8.8AI score0.00693EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2023/03/01 12:0 a.m.34 views

CVE-2022-3294

Users may have access to secure endpoints in the control plane network. Kubernetes clusters are only affected if an untrusted user can modify Node objects and send proxy requests to them. Kubernetes supports node proxying, which allows clients of kube-apiserver to access endpoints of a Kubelet to...

8.8CVSS8.7AI score0.00693EPSS
Exploits0
Cvelist
Cvelistadded 2023/03/01 12:0 a.m.15 views

CVE-2022-3162 Unauthorized read of Custom Resources

Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions...

6.5CVSS7.1AI score0.01025EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2023/02/28 3:48 p.m.20 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.0 (openstack-swift) security update

An update for openstack-swift is now available for Red Hat OpenStack Platform 17.0 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.7AI score0.00247EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2023/02/20 6:33 p.m.28 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.12.4 security update

Red Hat build of MicroShift release 4.12.4 is now available with updates to packages and images that fix several bugs. This release includes a security update for the Red Hat build of MicroShift 4.12. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common...

6.5CVSS6.8AI score0.01025EPSS
Exploits0References3
OSV
OSVadded 2023/02/16 8:47 p.m.29 views

GHSA-3JFQ-742W-XG8J Users with any cluster secret update access may update out-of-bounds cluster secrets

Impact All Argo CD versions starting with v2.3.0-rc1 are vulnerable to an improper authorization bug which allows users who have the ability to update at least one cluster secret to update any cluster secret. The attacker could use this access to escalate privileges potentially controlling...

9.1CVSS9AI score0.00354EPSS
Exploits0References4
Github Security Blog
Github Security Blogadded 2023/02/16 8:47 p.m.47 views

Users with any cluster secret update access may update out-of-bounds cluster secrets

Impact All Argo CD versions starting with v2.3.0-rc1 are vulnerable to an improper authorization bug which allows users who have the ability to update at least one cluster secret to update any cluster secret. The attacker could use this access to escalate privileges potentially controlling...

9.1CVSS8.8AI score0.00354EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linuxadded 2023/02/15 9:46 p.m.50 views

Moderate: Red Hat Security Advisory: RHSA: Submariner 0.13.3 - security updates and bug fixes

Submariner 0.13.3 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 2.6 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVS...

7.5CVSS6.7AI score0.00054EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2023/02/15 4:0 a.m.3 views

SUSE CVE-2020-10749

A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or...

6CVSS8.2AI score0.01843EPSS
Exploits1References11
SUSE CVE
SUSE CVEadded 2023/02/15 3:22 a.m.2 views

SUSE CVE-2022-43757

A Cleartext Storage of Sensitive Information vulnerability in SUSE Rancher allows users on managed clusters to gain access to credentials. The impact depends on the credentials exposed This issue affects: SUSE Rancher Rancher versions prior to 2.5.17; Rancher versions prior to 2.6.10; Rancher...

9.9CVSS9.3AI score0.00225EPSS
Exploits1References4
NVD
NVDadded 2023/02/10 10:15 a.m.9 views

CVE-2022-34454

Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a heap-based buffer overflow. A local privileged malicious user could potentially exploit this vulnerability, leading to system takeover. This impacts compliance mode clusters...

6.7CVSS6.4AI score0.00127EPSS
Exploits0References1
OSV
OSVadded 2023/02/10 10:15 a.m.1 views

CVE-2022-34454

Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a heap-based buffer overflow. A local privileged malicious user could potentially exploit this vulnerability, leading to system takeover. This impacts compliance mode clusters...

6.7CVSS6.1AI score
Exploits0References1
CVE
CVEadded 2023/02/10 9:48 a.m.40 views

CVE-2022-34454

CVE-2022-34454 affects Dell PowerScale OneFS versions 8.2.x–9.3.x with a heap-based buffer overflow in processing untrusted input, enabling a local privileged attacker to potentially take over the system. Impact is noted for compliance mode clusters. Root cause described as a boundary/heap-relate...

6.7CVSS6.3AI score0.00127EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/02/10 9:48 a.m.15 views

CVE-2022-34454

Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a heap-based buffer overflow. A local privileged malicious user could potentially exploit this vulnerability, leading to system takeover. This impacts compliance mode clusters...

6.7CVSS6.6AI score0.00127EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2023/02/07 5:23 p.m.45 views

Moderate: Red Hat Security Advisory: RHSA: Submariner 0.14 - bug fix and security updates

Submariner 0.14 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 2.7 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS...

7.5CVSS8.2AI score0.00331EPSS
Exploits1References50
OSV
OSVadded 2023/02/07 1:15 p.m.24 views

CVE-2022-43757

A Cleartext Storage of Sensitive Information vulnerability in SUSE Rancher allows users on managed clusters to gain access to credentials. The impact depends on the credentials exposed This issue affects: SUSE Rancher Rancher versions prior to 2.5.17; Rancher versions prior to 2.6.10; Rancher...

8.8CVSS8.8AI score
Exploits0References1
Prion
Prionadded 2023/02/07 1:15 p.m.25 views

Design/Logic Flaw

A Cleartext Storage of Sensitive Information vulnerability in SUSE Rancher allows users on managed clusters to gain access to credentials. The impact depends on the credentials exposed This issue affects: SUSE Rancher Rancher versions prior to 2.5.17; Rancher versions prior to 2.6.10; Rancher...

6.5CVSS8.8AI score0.00225EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder