Lucene search
K

145 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.49 views

K54252492: Side-channel processor vulnerability CVE-2018-3693

Security Advisory Description Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis. CVE-2018-3693 also known as Spectre ...

5.6CVSS6.9AI score0.08416EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.74 views

K31085564: Spectre SWAPGS gadget vulnerability CVE-2019-1125

Security Advisory Description An information disclosure vulnerability exists when certain central processing units CPU speculatively access memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1071, CVE-2019-1073. CVE-2019-1125 also known as Spect...

5.6CVSS7.1AI score0.04521EPSS
Exploits4Affected Software17
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.36 views

K35135935: Side-channel processor vulnerability CVE-2018-9056 (BranchScope)

Security Advisory Description Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of information to an attacker with local user access via a side-channel attack on the directional branch predictor, as demonstrated by a pattern history table PHT, aka...

5.6CVSS5.4AI score0.00696EPSS
Exploits1
Prion
Prion
added 2022/12/02 7:15 p.m.22 views

Design/Logic Flaw

Capsule is a multi-tenancy and policy-based framework for Kubernetes. Prior to version 0.1.3, a ServiceAccount deployed in a Tenant Namespace, when granted with PATCH capabilities on its own Namespace, is able to edit it and remove the Owner Reference, breaking the reconciliation of the Capsule...

6.5CVSS8.6AI score0.00861EPSS
Exploits0References4Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2022/10/04 3:3 p.m.21 views

Velociraptor Version 0.6.6: Multi-Tenant Mode and More Let You Dig Deeper at Scale Like Never Before

Rapid7 is excited to announce the release of version 0.6.6 of Velociraptor – an advanced, open-source digital forensics and incident response DFIR tool that enhances visibility into your organization’s endpoints. After several months of development and testing, we are excited to share its powerfu...

Exploits0
CNVD
CNVD
added 2022/09/28 12:0 a.m.46 views

Apache Pulsar Trust Management Issues Vulnerability

Apache Pulsar is the United States Apache Apache Foundation for cloud environments, set of messages, storage, lightweight functional computing as one of the distributed message flow platform. The software supports multi-tenancy, persistent storage, multi-machine room cross-region data replication...

5.9CVSS5.9AI score0.0058EPSS
Exploits0References1
CNVD
CNVD
added 2022/09/28 12:0 a.m.31 views

Apache Pulsar Trust Management Issue Vulnerability

Apache Pulsar is an Apache Foundation distributed messaging platform for cloud environments that integrates messaging, storage, and lightweight functional computing. The software supports multi-tenancy, persistent storage, multi-room cross-regional data replication, and highly scalable streaming...

5.9CVSS1.9AI score0.00568EPSS
Exploits0References1
CNVD
CNVD
added 2022/09/28 12:0 a.m.18 views

Apache Pulsar Trust Management Issue Vulnerability

Apache Pulsar is an Apache Foundation distributed messaging platform for cloud environments that integrates messaging, storage, and lightweight functional computing. The software supports multi-tenancy, persistent storage, multi-room cross-regional data replication, with strong consistency, high...

5.9CVSS1.7AI score0.00597EPSS
Exploits0References1
Kitploit
Kitploit
added 2022/09/20 11:30 a.m.24 views

Kam1n0 - Assembly Analysis Platform

Kam1n0 v2.x is a scalable assembly management and analysis platform. It allows a user to first index a large collection of binaries into different repositories and provide different analytic services such as clone search and classification. It supports multi-tenancy access and management of...

7.4AI score
Exploits0References39
OSV
OSV
added 2022/09/16 6:49 p.m.39 views

GHSA-P2G7-XWVR-RRW3 Helm Controller denial of service

Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK allows for specific data inputs to cause high memory consumption, which in some platforms could cause the controller to panic and stop processing reconciliations. Impact In a shared cluster multi-tenanc...

7.7CVSS6.8AI score0.01007EPSS
Exploits0References6
NVD
NVD
added 2022/09/07 9:15 p.m.20 views

CVE-2022-36049

Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...

7.7CVSS0.01007EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/09/07 8:15 p.m.39 views

CVE-2022-36049 Flux2 Helm Controller denial of service

Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...

7.7CVSS7.5AI score0.01007EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/09/07 8:15 p.m.6 views

CVE-2022-36049 Flux2 Helm Controller denial of service

Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...

7.7CVSS7.3AI score0.01007EPSS
Exploits0References4
OSV
OSV
added 2022/09/07 8:15 p.m.29 views

CVE-2022-36049 Flux2 Helm Controller denial of service

Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...

7.7CVSS7.4AI score0.01007EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2022/06/22 12:0 a.m.8 views

The vulnerability of the proxy-capsule-proxy module of the Capsule software tool, which allows for multi-tenancy in Kubernetes, enables attackers to increase their privileges.

The vulnerability of the capsule-proxy module of the Capsule software solution for providing multi-tenancy in Kubernetes is related to deficiencies in the authentication process. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

9CVSS7.5AI score0.01375EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/05/20 4:58 p.m.20 views

GHSA-7PWF-JG34-HXWP Improper path handling in Kustomization files allows for denial of service

The kustomize-controller enables the use of Kustomize’s functionality when applying Kubernetes declarative state onto a cluster. A malicious user can use a specially crafted kustomization.yaml to cause Denial of Service at controller level. In multi-tenancy deployments this can lead to multiple...

7.7CVSS6.7AI score0.0095EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/20 4:58 p.m.28 views

Improper path handling in Kustomization files allows for denial of service

The kustomize-controller enables the use of Kustomize’s functionality when applying Kubernetes declarative state onto a cluster. A malicious user can use a specially crafted kustomization.yaml to cause Denial of Service at controller level. In multi-tenancy deployments this can lead to multiple...

7.7CVSS0.8AI score0.0095EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2022/05/16 6:13 p.m.20 views

GHSA-VVMQ-FWMG-2GJC Improper kubeconfig validation allows arbitrary code execution

Flux2 can reconcile the state of a remote cluster when provided with a kubeconfig with the correct access rights. Kubeconfig files can define commands to be executed to generate on-demand authentication tokens. A malicious user with write access to a Flux source or direct access to the target...

9.9CVSS10AI score0.01044EPSS
Exploits0References3
NVD
NVD
added 2022/05/06 1:15 a.m.27 views

CVE-2022-24877

Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious kustomization.yaml allows an attacker to expose sensitive data from the controller’s pod filesystem and possibly privilege escalation in multi-tenancy deployments...

9.9CVSS0.01108EPSS
Exploits0References1
Prion
Prion
added 2022/05/06 1:15 a.m.9 views

Path traversal

Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious kustomization.yaml allows an attacker to expose sensitive data from the controller’s pod filesystem and possibly privilege escalation in multi-tenancy deployments...

6.5CVSS8.6AI score0.01108EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder