Lucene search
+L

12 matches found

OpenVAS
OpenVAS
added 2025/08/14 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2025:02423-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7.5AI score0.02224EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 4: kubernetes (TSSA-2024:0872)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0872 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.8CVSS6.6AI score0.02464EPSS
Exploits2References7
Rosalinux
Rosalinux
added 2024/04/23 12:1 p.m.61 views

Advisory ROSA-SA-2024-2405

software: kubernetes 1.25.15 WASP: ROSA-CHROME packageevrstring: kubernetes-1.25.15-1 CVE-ID: CVE-2023-2431 BDU-ID: 2023-03899 CVE-Crit: LOW CVE-DESC.: A vulnerability in the kubelet utility of the Kubernetes virtual machine cluster management software tool is related to insufficient validation o...

6.5CVSS5.9AI score0.02157EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/13 1:57 p.m.27 views

Security Bulletin: IBM Cloud Kubernetes Service is affected by a kubelet security vulnerability (CVE-2023-2431)

Summary IBM Cloud Kubernetes Service is affected by a security vulnerability in the kubelet that allows pods to bypass the seccomp profile enforcement CVE-2023-2431 Vulnerability Details CVEID: CVE-2023-2431 Description: Kubernetes could allow a local authenticated attacker to bypass security...

5.5CVSS5.3AI score0.00257EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/07/01 12:0 a.m.23 views

Fedora 37 : kubernetes (2023-a1d7a29fe5)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-a1d7a29fe5 advisory. Patch update to Kubernetes 1.25 for Fedora 37. Primarily a security fix for CVE-2023-2431: Bypass of seccomp profile enforcement. Tenable has...

5.5CVSS6.5AI score0.00778EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/29 12:0 a.m.22 views

SUSE SLES15: kubernetes1.23-apiserver / kubernetes1.23-client / etc (SUSE-SU-2023:2691-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2691-1 advisory. - CVE-2023-2431: Fixed a bypass issue of seccomp profile enforcement bsc1212493. Tenable has extracted the preceding descripti...

5.5CVSS6.4AI score0.00257EPSS
Exploits0References4
OSV
OSV
added 2023/06/28 3:12 p.m.6 views

SUSE-SU-2023:2691-1 Security update for kubernetes1.23

This update for kubernetes1.23 fixes the following issues: - CVE-2023-2431: Fixed a bypass issue of seccomp profile enforcement bsc1212493...

5.5CVSS5.5AI score0.00257EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/27 12:0 a.m.13 views

Fedora 38 : kubernetes (2023-c7f63322b5)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-c7f63322b5 advisory. Upstream security update with additional bugfixes. Resolves CVE-2023-2431. Tenable has extracted the preceding description block directly from the...

5.5CVSS6.5AI score0.00257EPSS
Exploits0References2
NVD
NVD
added 2023/06/16 8:15 a.m.18 views

CVE-2023-2431

A security issue was discovered in Kubelet that allows pods to bypass the seccomp profile enforcement. Pods that use localhost type for seccomp profile but specify an empty profile field, are affected by this issue. In this scenario, this vulnerability allows the pod to run in unconfined seccomp...

5.5CVSS6.4AI score0.00257EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/06/16 7:8 a.m.12 views

CVE-2023-2431 Bypass of seccomp profile enforcement

A security issue was discovered in Kubelet that allows pods to bypass the seccomp profile enforcement. Pods that use localhost type for seccomp profile but specify an empty profile field, are affected by this issue. In this scenario, this vulnerability allows the pod to run in unconfined seccomp...

3.4CVSS6.6AI score0.00257EPSS
Exploits0References4
CVE
CVE
added 2023/06/16 7:8 a.m.344 views

CVE-2023-2431

CVE-2023-2431 describes a Kubernetes Kubelet vulnerability where pods using a localhost seccomp profile with an empty profile field can run with seccomp disabled, bypassing profile enforcement. Impact: affected pods may execute unconfined, potentially widening their ability to access host resourc...

5.5CVSS5.5AI score0.00257EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/06/16 7:8 a.m.66 views

CVE-2023-2431 Bypass of seccomp profile enforcement

A security issue was discovered in Kubelet that allows pods to bypass the seccomp profile enforcement. Pods that use localhost type for seccomp profile but specify an empty profile field, are affected by this issue. In this scenario, this vulnerability allows the pod to run in unconfined seccomp...

3.4CVSS5.9AI score0.00257EPSS
Exploits0References4
Rows per page
Query Builder