Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/06/01 5:42 p.m.11 views

CVE-2026-22872 Capsule TenantResource RawItems Cluster-Scoped Resource Creation Vulnerability

Capsule is a multi-tenancy and policy-based framework for Kubernetes. The Capsule Controller runs with cluster-admin privileges. Although the TenantResource RawItems processing logic forcibly sets the namespace, this is ineffective for cluster-scoped resources. Prior to version 0.13.0, tenant...

8.2CVSS5.8AI score0.0043EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/05/28 5:2 p.m.9 views

Capsule TenantResource RawItems Cluster-Scoped Resource Creation Vulnerability

TenantResource RawItems Cluster-Scoped Resource Creation Vulnerability Summary The Capsule Controller runs with cluster-admin privileges. Although the TenantResource RawItems processing logic forcibly sets the namespace, this is ineffective for cluster-scoped resources. Tenant administrators can...

9.1CVSS6AI score0.0043EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/02/04 7:19 a.m.15 views

CVE-2025-20902

Improper access control in Media Controller prior to version 1.0.24.5282 allows local attacker to launch activities in MediaController's privilege...

5.1CVSS0.0014EPSS
Exploits0References1
NCSC
NCSC
added 2024/08/19 11:37 a.m.6 views

Vulnerability fixed in Kubernetes

A vulnerability has been fixed in Kubernetes. The vulnerability is in the ingress-nginx module and allows a malicious person with permissions to create ingress objects to bypass a security measure to execute arbitrary code with permissions from the ingress-nginx controller. In a standard...

8.8CVSS9.5AI score0.27018EPSS
Exploits0References1
Rows per page
Query Builder