Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/11/06 11:41 p.m.8 views

CVE-2025-64171

A cross-namespace authorization flaw has been identified in the MARIN3R operator’s DiscoveryServiceCertificate resource. The flaw occurs because the operator mistakenly treats certain inputs as valid, bypassing Kubernetes Role-Based Access Control RBAC. When a user has permission to create...

8.7CVSS6.5AI score0.00197EPSS
Exploits0References5
NVD
NVD
added 2025/11/06 1:15 a.m.8 views

CVE-2025-64171

MARIN3R is a lightweight, CRD based envoy control plane for kubernetes. In versions 0.13.3 and below, there is a cross-namespace secret access vulnerability in the project's DiscoveryServiceCertificate which allows users to bypass RBAC and access secrets in unauthorized namespaces. This issue is...

8.7CVSS0.00197EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/06 12:23 a.m.2 views

CVE-2025-64171 MARIN3R: Cross-Namespace Vulnerability in the Operator

MARIN3R is a lightweight, CRD based envoy control plane for kubernetes. In versions 0.13.3 and below, there is a cross-namespace secret access vulnerability in the project's DiscoveryServiceCertificate which allows users to bypass RBAC and access secrets in unauthorized namespaces. This issue is...

8.7CVSS6AI score0.00197EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/06 12:23 a.m.5 views

EUVD-2025-37859

MARIN3R is a lightweight, CRD based envoy control plane for kubernetes. In versions 0.13.3 and below, there is a cross-namespace secret access vulnerability in the project's DiscoveryServiceCertificate which allows users to bypass RBAC and access secrets in unauthorized namespaces. This issue is...

8.7CVSS5.9AI score0.00197EPSS
Exploits0References5
CVE
CVE
added 2025/11/06 12:23 a.m.31 views

CVE-2025-64171

CVE-2025-64171 MARIN3R is a cross-namespace secret access vulnerability in the MARIN3R operator. In versions ≤ 0.13.3, DiscoveryServiceCertificate could bypass RBAC, allowing a user who can create DiscoveryServiceCertificate resources in one namespace to indirectly read Secrets in other namespace...

8.7CVSS6AI score0.00197EPSS
Exploits0References2
OSV
OSV
added 2025/11/06 12:23 a.m.5 views

CVE-2025-64171 MARIN3R: Cross-Namespace Vulnerability in the Operator

MARIN3R is a lightweight, CRD based envoy control plane for kubernetes. In versions 0.13.3 and below, there is a cross-namespace secret access vulnerability in the project's DiscoveryServiceCertificate which allows users to bypass RBAC and access secrets in unauthorized namespaces. This issue is...

8.7CVSS6.4AI score0.00197EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/11/06 12:23 a.m.36 views

CVE-2025-64171 MARIN3R: Cross-Namespace Vulnerability in the Operator

MARIN3R is a lightweight, CRD based envoy control plane for kubernetes. In versions 0.13.3 and below, there is a cross-namespace secret access vulnerability in the project's DiscoveryServiceCertificate which allows users to bypass RBAC and access secrets in unauthorized namespaces. This issue is...

8.7CVSS0.00197EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.4 views

marin3r 安全漏洞

marin3r is a lightweight CRD-based kubernetes control panel open-sourced by Red Hat 3scale SRE. A security vulnerability exists in marin3r 0.13.3 and earlier versions, which stems from a cross-namespace secret access vulnerability in DiscoveryServiceCertificate that could lead to bypassing RBAC a...

8.7CVSS6AI score0.00197EPSS
Exploits0References3
Snyk
Snyk
added 2025/11/04 3:43 p.m.3 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via the getIssuerCertificate function. An attacker can gain unauthorized access to Secrets in other namespaces by bypassing RBAC restrictions. This is only exploitable if the attacker has permission to create...

8.7CVSS7AI score0.00197EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/11/04 3:43 p.m.11 views

MARIN3R: Cross-Namespace Vulnerability in the Operator

Summary Cross-namespace Secret access vulnerability in DiscoveryServiceCertificate allows users to bypass RBAC and access Secrets in unauthorized namespaces. Affected Versions All versions prior to v0.13.4 Patched Versions v0.13.4 and later Impact Users with permission to create...

8.7CVSS6.3AI score0.00197EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.5 views

PT-2025-45114

Name of the Vulnerable Software and Affected Versions MARIN3R versions 0.13.3 and below Description MARIN3R, a lightweight, CRD based envoy control plane for kubernetes, contains a flaw where a cross-namespace secret access issue exists in the DiscoveryServiceCertificate component. This allows...

8.7CVSS6.4AI score0.00197EPSS
Exploits0References12
GitLab Advisory Database
GitLab Advisory Database
added 2025/11/04 12:0 a.m.25 views

MARIN3R: Cross-Namespace Vulnerability in the Operator

Cross-namespace Secret access vulnerability in DiscoveryServiceCertificate allows users to bypass RBAC and access Secrets in unauthorized namespaces...

8.7CVSS6.6AI score0.00197EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder