14 matches found
EUVD-2023-1234
Malicious code in bioql PyPI...
CVE-2023-30622
Clusternet is a general-purpose system for controlling Kubernetes clusters across different environments. An issue in clusternet prior to version 0.15.2 can be leveraged to lead to a cluster-level privilege escalation. The clusternet has a deployment called cluster-hub inside the clusternet-syste...
GO-2023-1735 A potential risk in clusternet which can be leveraged to make a cluster-level privilege escalation in github.com/clusternet/clusternet
A potential risk in clusternet which can be leveraged to make a cluster-level privilege escalation in github.com/clusternet/clusternet...
Privilege Escalation
github.com/clusternet/clusternet is vulnerable to Privilege Escalation. The vulnerability exists because the clusternetagentrbac.yaml does not properly initialize the verbs role, which allows an attacker to access to the worker node which runs the clusternet and leverage the service account to do...
CVE-2023-30622
Clusternet is a general-purpose system for controlling Kubernetes clusters across different environments. An issue in clusternet prior to version 0.15.2 can be leveraged to lead to a cluster-level privilege escalation. The clusternet has a deployment called cluster-hub inside the clusternet-syste...
Privilege escalation
Clusternet is a general-purpose system for controlling Kubernetes clusters across different environments. An issue in clusternet prior to version 0.15.2 can be leveraged to lead to a cluster-level privilege escalation. The clusternet has a deployment called cluster-hub inside the clusternet-syste...
CVE-2023-30622 Clusternet has potential risk which can be leveraged to make a cluster-level privilege escalation
Clusternet is a general-purpose system for controlling Kubernetes clusters across different environments. An issue in clusternet prior to version 0.15.2 can be leveraged to lead to a cluster-level privilege escalation. The clusternet has a deployment called cluster-hub inside the clusternet-syste...
CVE-2023-30622 Clusternet has potential risk which can be leveraged to make a cluster-level privilege escalation
Clusternet is a general-purpose system for controlling Kubernetes clusters across different environments. An issue in clusternet prior to version 0.15.2 can be leveraged to lead to a cluster-level privilege escalation. The clusternet has a deployment called cluster-hub inside the clusternet-syste...
CVE-2023-30622
CVE-2023-30622 affects Clusternet prior to 0.15.2. A deployment named cluster-hub in the clusternet-system namespace runs on worker nodes and uses the service account clusternet-hub, which is bound to the cluster role clusternet:hub. That cluster role has "" verbs on " .*" resources, enabling pri...
CVE-2023-30622 Clusternet has potential risk which can be leveraged to make a cluster-level privilege escalation
Clusternet is a general-purpose system for controlling Kubernetes clusters across different environments. An issue in clusternet prior to version 0.15.2 can be leveraged to lead to a cluster-level privilege escalation. The clusternet has a deployment called cluster-hub inside the clusternet-syste...
Clusternet 安全漏洞
Clusternet is an open source Kubernetes multi-cluster management tool from Clusternet that helps users manage and coordinate workloads across multiple Kubernetes clusters. A security vulnerability exists in Clusternet versions prior to 0.15.2, which stems from a vulnerability that allows an...
GHSA-833C-XH79-P429 A potential risk in clusternet which can be leveraged to make a cluster-level privilege escalation
Summary: A potential risk in clusternet which can be leveraged to make a cluster-level privilege escalation. Detailed analysis: The clusternet has a deployment called cluster-hub inside the clusternet-system Kubernetes namespace, which runs on worker nodes randomly. The deployment has a service...
A potential risk in clusternet which can be leveraged to make a cluster-level privilege escalation
Summary: A potential risk in clusternet which can be leveraged to make a cluster-level privilege escalation. Detailed analysis: The clusternet has a deployment called cluster-hub inside the clusternet-system Kubernetes namespace, which runs on worker nodes randomly. The deployment has a service...
PT-2023-22819 · Unknown · Clusternet
Name of the Vulnerable Software and Affected Versions: Clusternet versions prior to 0.15.2 Description: Clusternet is a general-purpose system for controlling Kubernetes clusters across different environments. An issue in Clusternet can be leveraged to lead to a cluster-level privilege escalation...