4 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-1000056
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any...
ansible-vault Yaml Load Code Execution Vulnerability
Summary An exploitable vulnerability exists in the yaml loading functionality of ansible-vault. A specially crafted vault can execute arbitrary python commands resulting in command execution. An attacker can insert python into the vault to trigger this vulnerability. Tested Versions ansible-vault...
CVE-2017-1000056
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object...
CVE-2017-1000056
CVE-2017-1000056 affects Kubernetes versions 1.5.0–1.5.4, where the PodSecurityPolicy admission plugin can be abused to escalate privileges by using any existing PodSecurityPolicy object. The root cause is a flaw in the PodSecurityPolicy admission flow that enables privilege escalation; impact is...