Lucene search
K

67 matches found

Cvelist
Cvelist
added 2025/09/05 2:31 a.m.9 views

CVE-2025-7445 Kubernetes secrets-store-sync-controller discloses service account tokens in logs

Kubernetes secrets-store-sync-controller in versions before 0.0.2 discloses service account tokens in logs...

6.5CVSS0.00179EPSS
Exploits0References2
OSV
OSV
added 2025/09/05 2:31 a.m.5 views

CVE-2025-7445 Kubernetes secrets-store-sync-controller discloses service account tokens in logs

Kubernetes secrets-store-sync-controller in versions before 0.0.2 discloses service account tokens in logs...

6.5CVSS5.9AI score0.00179EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/05 12:0 a.m.6 views

PT-2025-36631

Hello Kubernetes Community, A security issue was discovered in secrets-store-sync-controller where an actor with access to the controller logs could observe service account tokens. These tokens could then potentially be exchanged with external cloud providers to access secrets stored in cloud vau...

6.5CVSS6.3AI score0.00179EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/09/05 12:0 a.m.4 views

PT-2025-36106

Name of the Vulnerable Software and Affected Versions Kubernetes secrets-store-sync-controller versions prior to 0.0.2 Description The Kubernetes secrets-store-sync-controller discloses service account tokens in logs. Recommendations Update to version 0.0.2 or later...

9.9CVSS6.5AI score0.10543EPSS
Exploits21References49
Kubernetes Security Advisories
Kubernetes Security Advisories
added 2025/09/04 9:40 p.m.4 views

secrets-store-sync-controller discloses service account tokens in logs

A security issue was discovered in secrets-store-sync-controller where an actor with access to the controller logs could observe service account tokens. These tokens could then potentially be exchanged with external cloud providers to access secrets stored in cloud vault solutions. Tokens are onl...

6.5CVSS5.7AI score0.00179EPSS
Exploits0
Wolfi
Wolfi
added 2025/02/25 3:16 p.m.50 views

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: cortex, newrelic-infra-operator, aws-efs-csi-driver, kubernetes-dns-node-cache, nerdctl, terraform, direnv, kubebuilder, grafana-operator, nri-nagios, sbomqs, src, golangci-lint, argo-workflows, rqlite, nfs-subdir-external-provisioner,...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2024/06/11 5:16 p.m.112 views

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: cortex, fulcio, sigstore-scaffolding, kubescape, wal-g, py3-azure-identity, airflow, hugo-extended, trino, cluster-autoscaler, datadog-agent, goreleaser, sqlpad, buildkitd, flux-source-controller, pulumi, step-ca, tkn, trivy, chezmoi, argo-workflows, velero, zot,...

5.5CVSS6.5AI score0.00788EPSS
Exploits0
OSV
OSV
added 2024/06/05 3:10 p.m.35 views

GO-2024-2750 Kubernetes Secrets Store CSI Driver plugins arbitrary file write in github.com/Azure/secrets-store-csi-driver-provider-azure

Kubernetes Secrets Store CSI Driver plugins arbitrary file write in github.com/Azure/secrets-store-csi-driver-provider-azure. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing...

6.5CVSS6.4AI score0.0137EPSS
Exploits0References7
Chainguard
Chainguard
added 2024/03/06 12:31 a.m.121 views

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: kpt, cilium, secrets-store-csi-driver-provider-azure, prometheus-elasticsearch-exporter, k8sgpt-operator, configmap-reload-fips, runc, logstash-exporter-fips, restic, atlantis-fips, kube-bench, kubewatch, request-1279, vexctl, conftest-fips, minio-fips,...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2024/03/06 12:31 a.m.422 views

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: cortex, newrelic-infra-operator, aws-efs-csi-driver, gitsign, kubernetes-dns-node-cache, nerdctl, terraform, terraform-provider-google, conftest, crossplane-provider-aws-dynamodb, crossplane-provider-family-aws, grafana-operator, falcosidekick, src, golangci-lint,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2024/03/05 11:15 p.m.77 views

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: kpt, cilium, secrets-store-csi-driver-provider-azure, prometheus-elasticsearch-exporter, k8sgpt-operator, configmap-reload-fips, runc, logstash-exporter-fips, restic, atlantis-fips, kube-bench, kubewatch, request-1279, vexctl, conftest-fips, minio-fips,...

7.5CVSS6.7AI score0.01262EPSS
Exploits0
Chainguard
Chainguard
added 2023/10/25 9:17 p.m.83 views

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-fips, prometheus-blackbox-exporter, dynamic-localpv-provisioner-fips, slsa-verifier, buildkitd, prometheus-adapter-fips, bank-vaults-fips, terraform-provider-sendgrid-fips, metrics-server-fips, kubeflow-fips, kubevela, up, falco, vault-csi-provider...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2023/10/25 9:17 p.m.177 views

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: cortex, kubeflow, kubescape, slsa-verifier, up, prometheus-blackbox-exporter, terraform-provider-sendgrid, kubevela, spark-operator, buildkitd, dgraph, scorecard, src, aactl, falco, k3d...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2023/10/11 10:15 p.m.2958 views

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: crossplane-provider-azure, kpt, aws-load-balancer-controller-fips, skaffold, slsa-verifier, prometheus-elasticsearch-exporter, pulumi-kubernetes-operator, metrics-server-fips, k8sgpt-operator, fuse-overlayfs-snapshotter, configmap-reload-fips, git-lfs,...

7.5CVSS6.7AI score0.03796EPSS
Exploits0
Chainguard
Chainguard
added 2023/10/11 8:35 p.m.59 views

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: crossplane-provider-azure, kpt, aws-load-balancer-controller-fips, skaffold, slsa-verifier, prometheus-elasticsearch-exporter, pulumi-kubernetes-operator, metrics-server-fips, k8sgpt-operator, fuse-overlayfs-snapshotter, configmap-reload-fips, git-lfs,...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2023/10/10 9:28 p.m.43 views

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: cortex, aws-efs-csi-driver, terraform, conftest, src, rqlite, secrets-store-csi-driver-provider-gcp, dex, flux-notification-controller, bom, cue, prometheus-blackbox-exporter, kubevela, kubernetes-csi-livenessprobe, kaf, newrelic-infrastructure-agent, hey, kubeflow,...

5.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/06/26 12:0 a.m.9 views

The vulnerability of the secrets-store-csi-driver driver of the Kubernetes cluster management software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the secrets-store-csi-driver driver in the Kubernetes cluster management software is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

6.5CVSS6.2AI score0.00372EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2023/06/08 2:59 a.m.27 views

Insertion Of Sensitive Information Into Log File

sigs.k8s.io/secrets-store-csi-driver is vulnerable to Insertion of Sensitive Information Into Log File. An attacker with access to the driver logs could observe service account tokens due to the NodePublishVolume function of nodeserver.go...

6.5CVSS6.8AI score0.00372EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2023/06/07 3:15 p.m.32 views

CVE-2023-2878

Kubernetes secrets-store-csi-driver in versions before 1.3.3 discloses service account tokens in logs...

6.5CVSS6.4AI score0.00372EPSS
Exploits1References3
Chainguard
Chainguard
added 2023/06/07 3:15 p.m.727 views

CVE-2023-2878 vulnerabilities

Vulnerabilities for packages: secrets-store-csi-driver, vault-csi-provider...

6.5CVSS6.5AI score0.00372EPSS
Exploits1
Rows per page
Query Builder