Lucene search
+L

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.9 views

RHCOS 4 : OpenShift Container Platform 4.2.36 openshift (RHSA-2020:2594)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:2594 advisory. - kubernetes: Server side request forgery SSRF in kube-controller-manager allows users to leak secret information CVE-2020-8555 Note that...

6.3CVSS7.3AI score0.03679EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.10 views

RHCOS 4 : OpenShift Container Platform 4.3.25 openshift (RHSA-2020:2440)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:2440 advisory. - kubernetes: Server side request forgery SSRF in kube-controller-manager allows users to leak secret information CVE-2020-8555 Note that...

6.3CVSS7.3AI score0.03679EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.9 views

RHCOS 4 : OpenShift Container Platform 4.4.8 openshift (RHSA-2020:2448)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:2448 advisory. - kubernetes: Server side request forgery SSRF in kube-controller-manager allows users to leak secret information CVE-2020-8555 Note that...

6.3CVSS7.3AI score0.03679EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-1153

Malicious code in bioql PyPI...

3.5CVSS5.9AI score0.01082EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.27 views

Oracle Linux 7 : kubernetes-cni-plugins / kubernetes-cni / kubernetes / olcne (ELSA-2020-5727)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5727 advisory. - CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements - CVE-2020-8555: Half-Blind SSRF in...

6.5CVSS6.5AI score0.03679EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.32 views

Oracle Linux 7 : kubernetes / kubeadm-ha-setup / kubernetes-cni / kubernetes-cni-plugins (ELSA-2020-5725)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5725 advisory. - CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements - CVE-2020-8555: Half-Blind SSRF in...

6.3CVSS6.5AI score0.03679EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.37 views

Oracle Linux 7 : grafana / kubernetes-cni / kubernetes-cni-plugins / kubernetes / kubernetes / olcne (ELSA-2020-5726)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5726 advisory. - CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements - CVE-2020-8555: Half-Blind SSRF in...

8.2CVSS6.5AI score0.99856EPSS
Exploits6References4
OSV
OSV
added 2022/02/02 12:1 a.m.31 views

GHSA-QH36-44JV-C8XJ Potential proxy IP restriction bypass in Kubernetes

As mitigations to a report from 2019 and CVE-2020-8555, Kubernetes attempts to prevent proxied connections from accessing link-local or localhost networks when making user-driven connections to Services, Pods, Nodes, or StorageClass service providers. As part of this mitigation Kubernetes does a...

3.1CVSS5.3AI score0.01082EPSS
Exploits0References7
Prion
Prion
added 2022/02/01 11:15 a.m.31 views

Input validation

As mitigations to a report from 2019 and CVE-2020-8555, Kubernetes attempts to prevent proxied connections from accessing link-local or localhost networks when making user-driven connections to Services, Pods, Nodes, or StorageClass service providers. As part of this mitigation Kubernetes does a...

3.5CVSS5.1AI score0.03679EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.54 views

Fedora 32 : origin (2020-aeea04cd13)

Security fix for CVE-2020-8551, CVE-2020-8552, CVE-2020-8555, CVE-2020-8945 - Rebase to head of usptream 3.11 branch Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

7.5CVSS6.3AI score0.05071EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/21 7:34 p.m.45 views

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a Kubernetes controller manager security vulnerability (CVE-2020-8555)

Summary Red Hat OpenShift on IBM Cloud is affected by a security vulnerability in the Kubernetes controller manager that could leak data to authorized users CVE-2020-8555 Vulnerability Details CVEID: CVE-2020-8555 Description: Kubernetes is vulnerable to server-side request forgery, caused by a...

6.3CVSS0.4AI score0.03679EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2020/07/01 4:4 p.m.56 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.2.36 openshift security update

An update for openshift is now available for Red Hat OpenShift Container Platform 4.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.3CVSS6.6AI score0.03679EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/07/01 12:0 a.m.37 views

RHEL 7 / 8 : OpenShift Container Platform 4.2.36 openshift (RHSA-2020:2594)

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:2594 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...

6.3CVSS6.4AI score0.03679EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/06/17 9:28 p.m.64 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.4.8 openshift-enterprise-hyperkube-container security update

An update for openshift-enterprise-hyperkube-container is now available for Red Hat OpenShift Container Platform 4.4. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

6.3CVSS6.6AI score0.03679EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/06/17 8:17 p.m.38 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.4.8 openshift security update

An update for openshift is now available for Red Hat OpenShift Container Platform 4.4. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.3CVSS6.6AI score0.03679EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/06/17 7:44 p.m.62 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.3.25 openshift security update

An update for openshift is now available for Red Hat OpenShift Container Platform 4.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.3CVSS6.7AI score0.03679EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.34 views

RHEL 7 / 8 : OpenShift Container Platform 4.3.25 openshift (RHSA-2020:2440)

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:2440 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...

6.3CVSS6.7AI score0.03679EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2020/06/12 12:0 a.m.54 views

kubernetes kubeadm-ha-setup kubernetes-cni kubernetes-cni-plugins security update

kubernetes 1.12.10-1.0.12 - CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements - CVE-2020-8555: Half-Blind SSRF in kube-controller-manager kubeadm-ha-setup 0.0.2-1.0.70 - Enhance image tag read to depend on kubeadm-registry.sh for CVE release...

6.3CVSS3.2AI score0.03679EPSS
Exploits1
OSV
OSV
added 2020/06/05 5:15 p.m.2 views

DEBIAN-CVE-2020-8555

The Kubernetes kube-controller-manager in versions v1.0-1.14, versions prior to v1.15.12, v1.16.9, v1.17.5, and version v1.18.0 are vulnerable to a Server Side Request Forgery SSRF that allows certain authorized users to leak up to 500 bytes of arbitrary information from unprotected endpoints...

6.3CVSS6.3AI score0.03679EPSS
Exploits0References1
CVE
CVE
added 2020/06/04 9:50 p.m.265 views

CVE-2020-8555

CVE-2020-8555 (Kubernetes) : A SSRF in kube-controller-manager allows certain authorized users to leak up to 500 bytes from unprotected endpoints inside the master’s host network (e.g., link-local or loopback). Affected releases include Kubernetes kube-controller-manager versions v1.0–v1.14, and ...

6.3CVSS5.2AI score0.03679EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder