Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/23 1:14 a.m.10 views

CVE-2022-41939

knative.dev/func is is a client library and CLI enabling the development and deployment of Kubernetes functions. Developers using a malicious or compromised third-party buildpack could expose their registry credentials or local docker socket to a malicious lifecycle container. This issues has bee...

7.4CVSS6.7AI score0.00891EPSS
Exploits1References1
cvelist
cvelist
added 2022/11/19 12:0 a.m.38 views

CVE-2022-41939 Credential exposure when running third-party builders in knative/func

knative.dev/func is is a client library and CLI enabling the development and deployment of Kubernetes functions. Developers using a malicious or compromised third-party buildpack could expose their registry credentials or local docker socket to a malicious lifecycle container. This issues has bee...

6.1CVSS7.5AI score0.00891EPSS
Exploits1References4
cve
cve
added 2022/11/19 12:0 a.m.63 views

CVE-2022-41939

CVE-2022-41939 affects knative.dev/func (client library/CLI for Knative functions). The root issue is credential exposure when using third-party function buildpacks, where a compromised buildpack could expose registry credentials or the local Docker socket to a malicious lifecycle container. The ...

7.4CVSS6.7AI score0.00891EPSS
Exploits1References4Affected Software1
vulnrichment
vulnrichment
added 2022/11/19 12:0 a.m.7 views

CVE-2022-41939 Credential exposure when running third-party builders in knative/func

knative.dev/func is is a client library and CLI enabling the development and deployment of Kubernetes functions. Developers using a malicious or compromised third-party buildpack could expose their registry credentials or local docker socket to a malicious lifecycle container. This issues has bee...

6.1CVSS7AI score0.00891EPSS
Exploits1References4
Rows per page
Query Builder