Lucene search
K

15 matches found

RedHat Linux
RedHat Linux
added 5 days ago10 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.20.27 security and extras update

Red Hat OpenShift Container Platform release 4.20.27 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.20. Red Hat Product Security has rated this update as having a security impact of...

8.7CVSS5.9AI score0.00656EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/11 6:6 a.m.17 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.15.65 security and extras update

Red Hat OpenShift Container Platform release 4.15.65 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.15. Red Hat Product Security has rated this update as having a security impact of...

9.1CVSS6.7AI score0.01557EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2026/05/27 8:55 a.m.27 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.32 security and extras update

Red Hat OpenShift Container Platform release 4.19.32 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a security impact of...

9.8CVSS6.9AI score0.01735EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-2431

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security issue was discovered in Kubelet that allows pods to bypass the seccomp profile enforcement. Pods that use localhost type for seccomp profile but...

5.5CVSS6.4AI score0.00257EPSS
Exploits0References2
Veracode
Veracode
added 2025/05/02 5:28 a.m.6 views

Authentication Bypass

github.com/k3s-io/k3s is vulnerable to unintended unauthenticated access. The vulnerability is due to a Kubernetes kubelet configuration change that, in some cases, sets ReadOnlyPort to 10255, allowing unauthenticated access and potential exposure of credentials...

6.8CVSS6.7AI score0.00379EPSS
Exploits0References6Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/28 10:0 p.m.6 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Kubernetes kubelet (CVE-2024-10220)

Summary A vulnerability in Kubernetes kubelet that is used by InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2024-10220 DESCRIPTION: Kubernetes kubelet could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by improper...

8.1CVSS7.4AI score0.03001EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/24 12:0 a.m.5 views

The vulnerability of the kubelet utility, a management tool for clusters of virtual machines in Kubernetes, for Windows operating systems allows a hacker to execute arbitrary commands.

The vulnerability of the kubelet utility in the Kubernetes cluster management software for Windows operating systems is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

6.6CVSS7AI score0.01394EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/11/17 12:0 a.m.6 views

The vulnerability of the kubelet utility in the Kubernetes cluster management software allows a hacker to elevate their privileges to the level of an administrator.

The vulnerability of the kubelet utility in the Kubernetes cluster management software is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to elevate their privileges to the level of an administrator...

8.3CVSS7.4AI score0.03578EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.6 views

The vulnerability of the kubelet utility in the Kubernetes cluster management software allows a attacker to configure certain modules to operate in an “abnormal mode”.

The vulnerability of the kubelet utility in the Kubernetes cluster management software is related to insufficient validation of the specified type of input data. Exploiting this vulnerability could allow an attacker to configure certain modules to operate in a “non-organic mode”...

3.4CVSS6.2AI score0.00257EPSS
Exploits0References6Affected Software2
GithubExploit
GithubExploit
added 2022/01/19 2:5 p.m.743 views

Exploit for Improper Input Validation in Kubernetes

About It's exploit for CVE-2021-25741 vulnerability. This vu...

8.8CVSS8.3AI score0.06505EPSS
Exploits1
OSV
OSV
added 2020/07/27 8:15 p.m.4 views

DEBIAN-CVE-2020-8558

The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services bound to 127.0.0.1 running on the node or in the node's network namespace. Such a service is generally...

8.8CVSS6.6AI score0.03597EPSS
Exploits5References1
OSV
OSV
added 2020/07/27 8:15 p.m.1 views

UBUNTU-CVE-2020-8558

The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services bound to 127.0.0.1 running on the node or in the node's network namespace. Such a service is generally...

8.8CVSS6.7AI score0.03597EPSS
Exploits5References2
Veracode
Veracode
added 2020/07/17 4:41 a.m.32 views

Privilege Escalation

An attacker is able to intercept certain requests to the Kubelet and send a redirect response that may be followed by a client using the credentials from the original request. This can lead to compromise of other nodes...

6.8CVSS6.7AI score0.061EPSS
Exploits3References6Affected Software77
OSV
OSV
added 2020/03/27 3:15 p.m.1 views

DEBIAN-CVE-2020-8551

The Kubelet component in versions 1.15.0-1.15.9, 1.16.0-1.16.6, and 1.17.0-1.17.2 has been found to be vulnerable to a denial of service attack via the kubelet API, including the unauthenticated HTTP read-only API typically served on port 10255, and the authenticated HTTPS API typically served on...

6.5CVSS6.6AI score0.01141EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/25 12:0 a.m.2 views

Google Kubernetes Resource Management Error Vulnerability (CNVD-2020-20713)

Google Kubernetes is a set of open source Docker container cluster management system from the U.S. company Google Google. The system provides resource scheduling, deployment and operation, service discovery and scaling up and down for containerized applications. A resource management error...

6.5CVSS7AI score0.01141EPSS
Exploits0References1
Rows per page
Query Builder