Lucene search
+L

22 matches found

Gitee
Gitee
added 2025/09/06 10:57 a.m.121 views

Exploit for Insufficiently Protected Credentials in Linuxfoundation Containerd

It is an offensive tool for Kubernetes. The repository contains information on various methods to hack and exploit Kubernetes clusters, including articles, videos, and presentations on topics such as securing clusters by eliminating risky permissions, Kubernetes pentest methodology, and container...

6.1CVSS6AI score0.02236EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/06/22 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-1926)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.02236EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2022/06/22 12:0 a.m.60 views

EulerOS 2.0 SP8 : docker-engine (EulerOS-SA-2022-1926)

According to the versions of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In containerd an industry-standard container runtime before version 1.2.14 there is a credential leaking vulnerability. If a container...

7.8CVSS6.3AI score0.02236EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2022/04/20 12:0 a.m.57 views

EulerOS 2.0 SP10 : docker-engine (EulerOS-SA-2022-1501)

According to the versions of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In containerd an industry-standard container runtime before version 1.2.14 there is a credential leaking vulnerability. If a container...

6.8CVSS6.1AI score0.02236EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2022/04/20 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-1482)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.9AI score0.02236EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/04/20 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-1501)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.9AI score0.02236EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.53 views

Mageia: Security Advisory (MGASA-2020-0406)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.7AI score0.02236EPSS
Exploits1References5
Amazon
Amazon
added 2022/01/20 12:0 a.m.39 views

Medium: containerd

Issue Overview: A flaw was found in containerd. Credentials may be leaked during an image pull. CVE-2020-15157 Affected Packages: containerd Issue Correction: Run yum update containerd or yum update --advisory ALAS-2021-1555 to update your system. New Packages: src: ...

6.1CVSS6.1AI score0.02236EPSS
Exploits1
Amazon
Amazon
added 2021/11/18 12:0 a.m.8 views

Medium: containerd

Issue Overview: A flaw was found in containerd. Credentials may be leaked during an image pull. CVE-2020-15157 Affected Packages: containerd Note: This advisory is applicable to Amazon Linux 2 - Nitro-enclaves Extra. Visit this page to learn more about Amazon Linux 2 AL2 Extras and this FAQ secti...

6.1CVSS6.8AI score0.02236EPSS
Exploits1
Amazon
Amazon
added 2021/11/18 12:0 a.m.11 views

Medium: containerd

Issue Overview: A flaw was found in containerd. Credentials may be leaked during an image pull. CVE-2020-15157 Affected Packages: containerd Note: This advisory is applicable to Amazon Linux 2 - Docker Extra. Visit this page to learn more about Amazon Linux 2 AL2 Extras and this FAQ section for t...

6.1CVSS6.8AI score0.02236EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2021:0445-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.8AI score0.03287EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2021/02/24 2:45 p.m.527 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.7.0 packages security update

Red Hat OpenShift Container Platform release 4.7.0 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.6CVSS6.6AI score0.03813EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2021/02/24 12:0 a.m.100 views

RHEL 7 / 8 : OpenShift Container Platform 4.7.0 (RHSA-2020:5634)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5634 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

8.6CVSS6.7AI score0.03813EPSS
Exploits2References15
Oracle linux
Oracle linux
added 2020/12/05 12:0 a.m.127 views

docker-cli docker-engine security update

docker-cli 19.03.11-7 - Fix for CVE-2020-15257 19.03.11-6 - Fix for CVE-2020-15157 19.03.11-5 - Bugfix for 'docker images name' not working on docker 19.03.11-ol - Address CVE-2020-16845 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 -...

9.3CVSS0.9857EPSS
Exploits35
Mageia
Mageia
added 2020/11/09 2:48 p.m.83 views

Updated docker packages fix a security vulnerability

It was discovered that Docker could be made to expose sensitive information when processing URLs in container image manifests. A remote attacker could use this to trick the user and obtain the user's registry credentials CVE-2020-15157...

6.1CVSS6.6AI score0.02236EPSS
Exploits1References3
OSV
OSV
added 2020/11/09 2:48 p.m.10 views

MGASA-2020-0406 Updated docker packages fix a security vulnerability

It was discovered that Docker could be made to expose sensitive information when processing URLs in container image manifests. A remote attacker could use this to trick the user and obtain the user's registry credentials CVE-2020-15157...

6.1CVSS6.3AI score0.02236EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/11/03 12:0 a.m.45 views

Oracle Linux 7 : containerd (ELSA-2020-5906)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-5906 advisory. - Addresses CVE-2020-15157 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not test...

6.1CVSS6.4AI score0.02236EPSS
Exploits1References2
Oracle linux
Oracle linux
added 2020/11/02 12:0 a.m.43 views

containerd security update

1.2.14-1.0.1 - BUILDINFO: commit=259ae80da592d4f6b5e3cdc87202d36bc86a3579 - Addresses CVE-2020-15157 1.2.14-1.0.0 - Added Oracle specific build files...

6.1CVSS2.2AI score0.02236EPSS
Exploits1
Oracle linux
Oracle linux
added 2020/10/28 12:0 a.m.180 views

docker-engine docker-cli security update

docker-engine 19.03.11-6 - Fix for CVE-2020-15157 19.03.11-5 - Bugfix for 'docker images name' not working on docker 19.03.11-ol - Address CVE-2020-16845 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 -...

9.3CVSS0.9857EPSS
Exploits34
Tenable Nessus
Tenable Nessus
added 2020/10/28 12:0 a.m.45 views

Oracle Linux 7 : docker-engine / docker-cli (ELSA-2020-5900)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5900 advisory. - Fix for CVE-2020-15157 - Address CVE-2020-16845 - update to 19.03.11 for CVE-2020-13401 - apply e4931e664feac6fa8846f3f04268a0cc98822549, fixes CVE-2019-5736 ...

9.3CVSS7AI score0.9857EPSS
Exploits34References2
Rows per page
Query Builder