Lucene search
K

219 matches found

NVD
NVD
added 2020/06/03 2:15 p.m.16 views

CVE-2020-10749

A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or...

6CVSS6AI score0.02428EPSS
Exploits1References5
Prion
Prion
added 2020/06/03 2:15 p.m.19 views

Design/Logic Flaw

A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or...

6CVSS5.8AI score0.02428EPSS
Exploits1References5Affected Software4
OSV
OSV
added 2020/06/03 2:15 p.m.2 views

UBUNTU-CVE-2020-10749

A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or...

6CVSS7.1AI score0.02428EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2020/06/03 12:0 a.m.3 views

PT-2020-12311 · Containernetworking +5 · Containernetworking-Plugins +5

Name of the Vulnerable Software and Affected Versions: containernetworking/plugins versions prior to 0.8.6 Description: A vulnerability was found that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sendi...

8.2CVSS6.3AI score0.99856EPSS
Exploits6References103
Kubernetes Security Advisories
Kubernetes Security Advisories
added 2020/05/27 7:32 p.m.5 views

IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements

CVSS Rating: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L 6.0 Medium A cluster configured to use an affected container networking implementation is susceptible to man-in-the-middle MitM attacks. By sending “rogue” router advertisements, a malicious container can reconfigure the host to redirect...

6CVSS6.7AI score0.02428EPSS
Exploits1Affected Software1
Oracle linux
Oracle linux
added 2020/05/12 12:0 a.m.77 views

container-tools:ol8 security update

buildah 1.11.6-8.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.11.6-8 - fix 'CVE-2020-10696 buildah: crafted input tar file may lead to local file overwriting during image build process' - Resolves: 1817742 1.11.6-7 - fix 'COPY command takes long time with buildah' - Resolves...

9.3CVSS0.7AI score0.02603EPSS
Exploits1
Rockylinux
Rockylinux
added 2020/04/28 4:7 p.m.31 views

container-tools:2.0 security update

An update is available for udica, toolbox, python-podman-api, slirp4netns, containernetworking-plugins, criu, cockpit-podman. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.3CVSS8.4AI score0.02603EPSS
Exploits1
Rockylinux
Rockylinux
added 2020/04/07 12:58 p.m.30 views

container-tools:1.0 security update

An update is available for fuse-overlayfs, oci-umount, runc, skopeo, oci-systemd-hook, containernetworking-plugins. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE li...

6.8CVSS1.1AI score0.03566EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/02/05 12:0 a.m.65 views

RHEL 7 : containernetworking-plugins (RHSA-2020:0406)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:0406 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfac...

7.8CVSS8.1AI score0.83433EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2020/02/04 7:25 p.m.88 views

Important: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

7.8CVSS7.4AI score0.83433EPSS
Exploits1References3
Rockylinux
Rockylinux
added 2020/02/04 11:39 a.m.43 views

container-tools:rhel8 security, bug fix, and enhancement update

An update is available for containernetworking-plugins, python-podman-api, udica, cockpit-podman. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The...

7.5CVSS1.1AI score0.04027EPSS
Exploits0
Oracle linux
Oracle linux
added 2020/01/03 12:0 a.m.194 views

container-tools:ol8 security and bug fix update

buildah 1.9.0-5.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.9.0-5 - Use autosetup macro again. 1.9.0-4 - Fix CVE-2019-10214 1734653. 1.9.0-3 - Resolves: 1721247 - enable fips mode 1.9.0-2 - Resolves: 1720654 - tests subpackage depends on golang explicitly 1.9.0-1 - Resolves...

8.8CVSS0.9AI score0.83433EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2019/06/17 12:0 a.m.42 views

Fedora 29 : containernetworking-plugins (2019-24217abfdf)

Resolves: 1715758 - CVE-2019-9946 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Networ...

7.5CVSS7AI score0.03119EPSS
Exploits0References2
Fedora
Fedora
added 2019/06/15 1:21 a.m.40 views

[SECURITY] Fedora 29 Update: containernetworking-plugins-0.7.5-1.fc29

The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...

7.5CVSS2.7AI score0.03119EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/06/15 12:0 a.m.48 views

Fedora Update for containernetworking-plugins FEDORA-2019-24217abfdf

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.03119EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/06/13 12:0 a.m.109 views

Fedora Update for containernetworking-plugins FEDORA-2019-d2b57d3b19

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.03119EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/06/13 12:0 a.m.51 views

Fedora 30 : containernetworking-plugins (2019-d2b57d3b19)

Resolves: 1715758 - CVE-2019-9946 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Networ...

7.5CVSS7AI score0.03119EPSS
Exploits0References2
Fedora
Fedora
added 2019/06/12 2:48 p.m.35 views

[SECURITY] Fedora 30 Update: containernetworking-plugins-0.7.5-1.fc30

The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...

7.5CVSS2.7AI score0.03119EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2019/04/23 5:40 p.m.7 views

Moderate: Red Hat Bug Fix Advisory: containernetworking-plugins bug fix and enhancement update

An updated containernetworking-plugins package that fixes several bugs and adds various enhancements is now available for Red Hat Enterprise Linux 7 Extras. The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interface...

7.5CVSS6.9AI score0.03119EPSS
Exploits0References1
Rows per page
Query Builder