Lucene search
+L

5 matches found

RedHat Linux
RedHat Linux
added 2023/09/08 1:9 p.m.84 views

Critical: Red Hat Security Advisory: Red Hat OpenShift GitOps security update

An update is now available for Red Hat OpenShift GitOps 1.8. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...

9.9CVSS6.8AI score0.01176EPSS
Exploits1References3
Circl
Circl
added 2023/09/08 2:19 a.m.10 views

CVE-2023-40029

creationtimestamp| type| source ---|---|--- 2023-09-08 02:19:34+00:00| seen| https://t.me/cibsecurity/70118 2025-01-25 10:00:05+00:00| published-proof-of-concept| Telegram/F-fOrjgp3Mr3VOE2BBhgFMlAqu7uJ17avQ8Wad5LrkBGLSw 2025-03-03 21:02:34+00:00| seen|...

9.9CVSS8.7AI score0.00975EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/09/07 10:11 p.m.67 views

CVE-2023-40029 Cluster secret might leak in cluster details page in Argo CD

Argo CD is a declarative continuous deployment for Kubernetes. Argo CD Cluster secrets might be managed declaratively using Argo CD / kubectl apply. As a result, the full secret body is stored inkubectl.kubernetes.io/last-applied-configuration annotation. pull request 7139 introduced the ability ...

9.9CVSS9.5AI score0.00975EPSS
Exploits1References3
CVE
CVE
added 2023/09/07 10:11 p.m.2541 views

CVE-2023-40029

Argo CD CVE-2023-40029 exploits leakage of full cluster secret bodies via kubectl.kubernetes.io/last-applied-configuration in cluster secrets. Affected by PR #7139; exposure occurs when clusters are stored as secrets and viewed through the API with clusters, get RBAC. Patches available in 2.8.3, ...

9.9CVSS9.2AI score0.00975EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/07 10:11 p.m.20 views

CVE-2023-40029 Cluster secret might leak in cluster details page in Argo CD

Argo CD is a declarative continuous deployment for Kubernetes. Argo CD Cluster secrets might be managed declaratively using Argo CD / kubectl apply. As a result, the full secret body is stored inkubectl.kubernetes.io/last-applied-configuration annotation. pull request 7139 introduced the ability ...

9.9CVSS6.4AI score0.00975EPSS
Exploits1References3
Rows per page
Query Builder