10 matches found
EUVD-2023-57399
Malicious code in bioql PyPI...
CVE-2023-5056
A flaw was found in the Skupper operator, which may permit a certain configuration to create a service account that would allow an authenticated attacker in the adjacent cluster to view deployments in all namespaces in the cluster. This issue permits unauthorized viewing of information outside of...
CVE-2023-5056
A flaw was found in the Skupper operator, which may permit a certain configuration to create a service account that would allow an authenticated attacker in the adjacent cluster to view deployments in all namespaces in the cluster. This issue permits unauthorized viewing of information outside of...
Design/Logic Flaw
A flaw was found in the Skupper operator, which may permit a certain configuration to create a service account that would allow an authenticated attacker in the adjacent cluster to view deployments in all namespaces in the cluster. This issue permits unauthorized viewing of information outside of...
CVE-2023-5056 Skupper-operator: privelege escalation via config map
A flaw was found in the Skupper operator, which may permit a certain configuration to create a service account that would allow an authenticated attacker in the adjacent cluster to view deployments in all namespaces in the cluster. This issue permits unauthorized viewing of information outside of...
CVE-2023-5056
CVE-2023-5056 involves the Skupper operator. A misconfiguration can enable creation of a service account that lets an authenticated attacker in a neighboring cluster view deployments across all namespaces, i.e., unauthorized access to information outside the user’s purview. The issue is tied to p...
Important: Red Hat Security Advisory: Red Hat Service Interconnect security update
An update is now available for Service Interconnect 1 for RHEL 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
CVE-2023-5056
A flaw was found in the Skupper operator, which may permit a certain configuration to create a service account that would allow an authenticated attacker in the adjacent cluster to view deployments in all namespaces in the cluster. This issue permits unauthorized viewing of information outside of...
Skupper skupper-operator security vulnerability
Skupper skupper-operator is a Kubernetes operator from the Skupper project. Skupper skupper-operator suffers from a security vulnerability that stems from the possibility of allowing a certain configuration to create a service account that allows an authenticated attacker in a neighboring cluster...
PT-2023-7534 · Unknown · Skupper Operator
Name of the Vulnerable Software and Affected Versions: Skupper operator affected versions not specified Description: A flaw in the Skupper operator may allow an authenticated attacker in an adjacent cluster to view deployments in all namespaces, permitting unauthorized access to information outsi...