Lucene search
K

16 matches found

NVD
NVD
added 4 hours ago6 views

CVE-2026-44938

A vulnerability has been identified in Fleet's agent-side deployer, which did not filter security-sensitive keys from namespaceLabels in fleet.yaml or BundleDeployment.spec.options.namespaceLabels when applying them to the target namespace. An attacker with git push access to a Fleet-monitored...

8.8CVSS
Exploits0References2
CVE
CVE
added 5 hours ago14 views

CVE-2026-44938

CVE-2026-44938 affects Fleet’s agent-side deployer, which did not filter security‑sensitive keys from namespaceLabels when applying them to a target namespace. An attacker with git push access to a Fleet-monitored repo could overwrite Pod Security Standards (PSS) enforcement labels, weakening adm...

8.8CVSS5.9AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 6 days ago6 views

Rancher has Privilege Escalation from Project Owner to Host

Impact A vulnerability has been identified in Rancher Manager that allows users assigned the Project Owner role to modify Pod Security Admission PSA labels on namespaces within their projects. Under the default role configuration, an attacker with the following access pattern can exploit this...

9.4CVSS5.8AI score0.00319EPSS
Exploits0References5Affected Software1
OSV
OSV
added 6 days ago4 views

GHSA-864G-863M-VCVQ Fleet has PSS Bypass through addLabelsFromOptions in Fleet Agent

Impact A vulnerability has been identified in Fleet's agent-side deployer, which did not filter security-sensitive keys from namespaceLabels in fleet.yaml or BundleDeployment.spec.options.namespaceLabels when applying them to the target namespace. An attacker with git push access to a...

8.8CVSS5.8AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 6 days ago12 views

Fleet has PSS Bypass through addLabelsFromOptions in Fleet Agent

Impact A vulnerability has been identified in Fleet's agent-side deployer, which did not filter security-sensitive keys from namespaceLabels in fleet.yaml or BundleDeployment.spec.options.namespaceLabels when applying them to the target namespace. An attacker with git push access to a...

8.8CVSS5.8AI score
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-6732

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00533EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/02/05 10:46 p.m.8 views

CVE-2022-36103

Talos Linux is a Linux distribution built for Kubernetes deployments. Talos worker nodes use a join token to get accepted into the Talos cluster. Due to improper validation of the request while signing a worker node CSR certificate signing request Talos control plane node might issue Talos API...

8.8CVSS6.1AI score0.00533EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2022/09/16 5:21 p.m.47 views

Talos worker join token can be used to get elevated access level to the Talos API

Impact Talos worker nodes use a join token to get accepted into the Talos cluster. A misconfigured Kubernetes environment may allow workloads to access the join token of the worker node. A malicious workload could then use the join token to construct a Talos CSR certificate signing request. Due t...

8.8CVSS8.1AI score0.00533EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/09/16 5:21 p.m.28 views

GHSA-7HGC-PHP5-77QQ Talos worker join token can be used to get elevated access level to the Talos API

Impact Talos worker nodes use a join token to get accepted into the Talos cluster. A misconfigured Kubernetes environment may allow workloads to access the join token of the worker node. A malicious workload could then use the join token to construct a Talos CSR certificate signing request. Due t...

7.2CVSS7.5AI score0.00533EPSS
Exploits0References5
NVD
NVD
added 2022/09/13 5:15 p.m.16 views

CVE-2022-36103

Talos Linux is a Linux distribution built for Kubernetes deployments. Talos worker nodes use a join token to get accepted into the Talos cluster. Due to improper validation of the request while signing a worker node CSR certificate signing request Talos control plane node might issue Talos API...

8.8CVSS0.00533EPSS
Exploits0References3
Prion
Prion
added 2022/09/13 5:15 p.m.12 views

Input validation

Talos Linux is a Linux distribution built for Kubernetes deployments. Talos worker nodes use a join token to get accepted into the Talos cluster. Due to improper validation of the request while signing a worker node CSR certificate signing request Talos control plane node might issue Talos API...

6.5CVSS8.4AI score0.00533EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/09/13 5:5 p.m.21 views

CVE-2022-36103 Talos worker join token can be used to get elevated access level to the Talos API

Talos Linux is a Linux distribution built for Kubernetes deployments. Talos worker nodes use a join token to get accepted into the Talos cluster. Due to improper validation of the request while signing a worker node CSR certificate signing request Talos control plane node might issue Talos API...

7.2CVSS8.7AI score0.00533EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/09/13 5:5 p.m.6 views

CVE-2022-36103 Talos worker join token can be used to get elevated access level to the Talos API

Talos Linux is a Linux distribution built for Kubernetes deployments. Talos worker nodes use a join token to get accepted into the Talos cluster. Due to improper validation of the request while signing a worker node CSR certificate signing request Talos control plane node might issue Talos API...

7.2CVSS8.4AI score0.00533EPSS
Exploits0References3
OSV
OSV
added 2022/09/13 5:5 p.m.3 views

CVE-2022-36103 Talos worker join token can be used to get elevated access level to the Talos API

Talos Linux is a Linux distribution built for Kubernetes deployments. Talos worker nodes use a join token to get accepted into the Talos cluster. Due to improper validation of the request while signing a worker node CSR certificate signing request Talos control plane node might issue Talos API...

7.2CVSS6.5AI score0.00533EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.6 views

PT-2022-4910 · Talos · Talos

Name of the Vulnerable Software and Affected Versions: Talos versions prior to 1.2.2 Description: The issue is related to improper validation of the request while signing a worker node CSR, which might allow a Talos control plane node to issue a Talos API certificate with full access to the Talos...

9CVSS6.2AI score0.00533EPSS
Exploits0References9
Fedora
Fedora
added 2022/07/04 1:35 a.m.18 views

[SECURITY] Fedora 36 Update: golang-k8s-pod-security-admission-1.22.0-3.fc36

Kubernetes Pod Security Standards implementation...

9.3CVSS8.2AI score0.05994EPSS
Exploits4
Rows per page
Query Builder