4 matches found
govulncheck-vulndb-0.0.20241119T173509-1.1 on GA media (moderate)
govulncheck-vulndb-0.0.20241119T173509-1.1 on GA media Announcement ID: openSUSE-SU-2024:14513-1 Rating: moderate Cross-References: CVE-2020-8911 CVE-2023-0109 CVE-2024-0793 CVE-2024-24425 CVE-2024-24426 CVE-2024-44625 CVE-2024-52010 CVE-2024-52308 CVE-2024-52522 CVE-2024-9526 CVSS scores:...
CVE-2020-8911 vulnerabilities
Vulnerabilities for packages: zot, commercial-grafana, dapr, vault-fips, kube-arangodb-fips, cluster-autoscaler, elastic-agent, gatekeeper-fips, argo-cd-fips, terraform, gatekeeper, harbor-fips, opentelemetry-collector, opentelemetry-collector-k8s, tigera-operator, elastic-agent-fips,...
CVE-2020-8911 vulnerabilities
Vulnerabilities for packages: external-secrets-operator, mattermost, cloud-sql-proxy, kube-arangodb, k3d, opentelemetry-collector, loki, zot, kots, gatekeeper, cluster-autoscaler, grafana, argo-cd...
CVE-2020-8911
CVE-2020-8911 describes a padding oracle in the AWS S3 Crypto SDK for Go (older GoLang S3 encryption client). The vulnerability arises because AES-CBC encryption was used without a MAC, enabling an attacker with write access to the target S3 bucket to observe decryption outcomes and reconstruct p...