Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2673 matches found

OSV
OSVadded 2023/07/03 9:30 p.m.25 views

GHSA-QC2G-GMH6-95P4 kube-apiserver vulnerable to policy bypass

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.6AI score0.01134EPSS
Exploits0References11
Github Security Blog
Github Security Blogadded 2023/07/03 9:30 p.m.34 views

Kubernetes mountable secrets policy bypass

Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field...

6.5CVSS6.5AI score0.02157EPSS
Exploits1References11Affected Software1
OSV
OSVadded 2023/07/03 9:15 p.m.1 views

DEBIAN-CVE-2023-2728

Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field...

6.5CVSS6.4AI score0.02157EPSS
Exploits1References1
NVD
NVDadded 2023/07/03 9:15 p.m.24 views

CVE-2023-2727

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.5AI score0.01134EPSS
Exploits0References4
OSV
OSVadded 2023/07/03 9:15 p.m.30 views

CVE-2023-2727

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.6AI score
Exploits0References4
OSV
OSVadded 2023/07/03 9:15 p.m.17 views

CVE-2023-2728

Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field...

6.5CVSS6.5AI score
Exploits0References4
OSV
OSVadded 2023/07/03 9:15 p.m.2 views

DEBIAN-CVE-2023-2727

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.4AI score0.01134EPSS
Exploits0References1
Prion
Prionadded 2023/07/03 9:15 p.m.23 views

Authentication flaw

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

4.7CVSS6.4AI score0.01134EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCveadded 2023/07/03 9:15 p.m.34 views

CVE-2023-2727

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.7AI score0.01134EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2023/07/03 9:15 p.m.22 views

CVE-2023-2728

Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field...

6.5CVSS6.7AI score0.02157EPSS
Exploits1References3
OSV
OSVadded 2023/07/03 9:15 p.m.1 views

UBUNTU-CVE-2023-2728

Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field...

6.5CVSS6.6AI score0.02157EPSS
Exploits1References4
OSV
OSVadded 2023/07/03 9:15 p.m.4 views

UBUNTU-CVE-2023-2727

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.6AI score0.01134EPSS
Exploits0References4
Cvelist
Cvelistadded 2023/07/03 8:6 p.m.25 views

CVE-2023-2728 Bypassing enforce mountable secrets policy imposed by the ServiceAccount admission plugin

Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field...

6.5CVSS6.8AI score0.02157EPSS
Exploits1References4
CVE
CVEadded 2023/07/03 8:6 p.m.2765 views

CVE-2023-2728

CVE-2023-2728 : The vulnerability allows containers to bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when ephemeral containers are used. Kubernetes clusters are affected only if both the ServiceAccount admission plugin and the annotation kubernetes.io/enforce...

6.5CVSS6.6AI score0.02157EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2023/07/03 8:6 p.m.25 views

CVE-2023-2728 Bypassing enforce mountable secrets policy imposed by the ServiceAccount admission plugin

Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field...

6.5CVSS6.6AI score0.02157EPSS
Exploits1References4
CVE
CVEadded 2023/07/03 8:5 p.m.2885 views

CVE-2023-2727

CVE-2023-2727: Kubernetes clusters that use ephemeral containers are affected when the ImagePolicyWebhook admission plugin is used together with ephemeral containers; this may allow launching containers from images restricted by ImagePolicyWebhook. The vulnerability is described in the initial do...

6.5CVSS6.6AI score0.01134EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2023/07/03 8:5 p.m.7 views

CVE-2023-2727 Bypassing policies imposed by the ImagePolicyWebhook admission plugin

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.6AI score0.01134EPSS
Exploits0References4
Cvelist
Cvelistadded 2023/07/03 8:5 p.m.18 views

CVE-2023-2727 Bypassing policies imposed by the ImagePolicyWebhook admission plugin

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.8AI score0.01134EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2023/07/03 8:5 p.m.12 views

CVE-2023-2727

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers...

6.5CVSS6.3AI score0.01134EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2023/07/03 12:0 a.m.34 views

Oracle Linux 8 : kubernetes (ELSA-2023-12564)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12564 advisory. - CVE-2023-2727, CVE-2023-2728 Kubernetes upgraded to 1.25.11 - CVE-2023-27496 - CVE-2023-27488 - CVE-2023-27493 - CVE-2023-27492 - CVE-2023-27491 -...

10CVSS6.8AI score0.02701EPSS
Exploits9References3
Rows per page
Query Builder