Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2020/04/27 12:0 a.m.41 views

openSUSE Security Update : kubernetes (openSUSE-2020-554) (Dirty COW)

This update introduces kubernetes version 1.14.1 and cri-o 1.17.1 to Leap 15.1. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2020-554. The text description of this plugin is C SUSE...

9.8CVSS7.2AI score0.86978EPSS
Exploits92References38
Tenable Nessus
Tenable Nessus
added 2019/05/03 12:0 a.m.39 views

Kubernetes 1.3.x < 1.7.14 / 1.8.x < 1.8.9 / 1.9.x < 1.9.4 multiple vulnerabilities

The version of Kubernetes installed on the remote host is version 1.3.x prior to 1.7.14, 1.8.x prior to 1.8.9 or 1.9.x prior to 1.9.4. It is, therefore, affected by multiple vulnerabilities. - An arbitrary file access vulnerability exists in containers using subpath volume mounts. An authenticate...

9.6CVSS7.5AI score0.11586EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.31 views

Fedora 28 : origin (2018-2bfbd27a0b)

Rebase to 3.9 - Security fix for CVE-2017-1002101 and CVE-2017-1002102 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

9.6CVSS7.3AI score0.11586EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2018/12/04 12:0 a.m.45 views

RHEL 7 : Red Hat OpenShift Container Platform (RHSA-2018:0475)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0475 advisory. - kubernetes: Volume security can be sidestepped with innocent emptyDir and subpath CVE-2017-1002101 - kubernetes: Malicious containers can...

9.6CVSS7.4AI score0.11586EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2018/05/11 12:0 a.m.32 views

Fedora 27 : kubernetes (2018-16c8fdf9b8)

Update to 1.10.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

9.6CVSS7.8AI score0.11586EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2018/04/10 12:0 a.m.36 views

Oracle Linux 7 : kubernetes (ELSA-2018-4061)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4061 advisory. - Ensure that the runtime mounts RO volumes read-only CVE-2017-1002102 - Update Dashboard version to v1.8.3 CVE-2017-1002102 - Fix nested volume mounts...

9.6CVSS7.5AI score0.11586EPSS
Exploits2References3
Oracle linux
Oracle linux
added 2018/04/05 12:0 a.m.45 views

kubernetes security update

1.9.1-2.1.5 - Production built 1.9.1-2.1.5 - Fix the upgrade version check - Remove w/a from Orabug 27125915 1.9.1-2.1.4.dev - Make sure worker node upgrade properly - Orabug 27649898 1.9.1-2.1.3.dev - Ensure that the runtime mounts RO volumes read-only CVE-2017-1002102 - Update Dashboard version...

9.6CVSS7.6AI score0.11586EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2018/03/13 5:29 p.m.26 views

CVE-2017-1002101

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type including non-privileged pods, subject to file permissions can access files/directories outside of the volume, including the host's filesyste...

9.6CVSS7.1AI score0.11586EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2018/03/12 7:40 p.m.77 views

Important: Red Hat Security Advisory: Red Hat OpenShift Container Platform security update

An update is now available for Red Hat OpenShift Container Platform 3.7, 3.6, 3.5, 3.4, and 3.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.6CVSS6.8AI score0.11586EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2018/03/12 4:19 p.m.50 views

CVE-2017-1002101

It was found that volume security can be sidestepped with innocent emptyDir and subpath. This could give an attacker with access to a pod full control over the node host by gaining access to docker socket...

9.6CVSS1.4AI score0.11586EPSS
Exploits2References2
Rows per page
Query Builder