Lucene search
K

12 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/08/08 3:28 p.m.62 views

Security Bulletin: IBM Cloud Pak for Data is vulnerable due to k8s.io/kubernetes ( CVE-2023-2728, CVE-2023-2727, CVE-2023-5408, CVE-2023-3955, CVE-2023-3676 )

Summary k8s.io/kubernetes is used by IBM Cloud Pak for Data as part of the platform. CVE-2023-2728, CVE-2023-2727, CVE-2023-5408, CVE-2023-3955, CVE-2023-3676. Vulnerability Details CVEID:CVE-2023-2728 DESCRIPTION: Kubernetes could allow a remote authenticated attacker to bypass security...

8.8CVSS7.3AI score0.11668EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.26 views

CBL Mariner 2.0 Security Update: kubernetes (CVE-2023-5408)

The version of kubernetes installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5408 advisory. - A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api serv...

7.2CVSS6AI score0.01112EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/11 4:54 p.m.31 views

Security Bulletin: IBM Storage Fusion HCI is vulnerable to elevated privileges due to OpenShift.

Summary OpenShift included with IBM Storage Fusion HCI is affected by the CVE listed below. CVE-2023-5408. Vulnerability Details CVEID:CVE-2023-5408 DESCRIPTION: OpenShift Kubernetes could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw in the node...

7.2CVSS7AI score0.01112EPSS
Exploits0Affected Software1
CBLMariner
CBLMariner
added 2024/04/10 9:48 p.m.35 views

CVE-2023-5408 affecting package kubernetes for versions less than 1.28.4-5

CVE-2023-5408 affecting package kubernetes for versions less than 1.28.4-5. A patched version of the package is available...

7.2CVSS7.3AI score0.01112EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.35 views

CVE-2023-5408 affecting package kubernetes for versions less than 1.29.1-2

CVE-2023-5408 affecting package kubernetes for versions less than 1.29.1-2. An upgraded version of the package is available that resolves this issue...

7.2CVSS7.3AI score0.01112EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/02/05 11:44 a.m.32 views

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a Kubernetes API server security vulnerability (CVE-2023-5408)

Summary Red Hat OpenShift on IBM Cloud is affected by a security vulnerability in the Kubernetes API server that may allow an attacker to modify restricted node labels and bypass the node restriction admission plugin CVE-2023-5408. Vulnerability Details CVEID: CVE-2023-5408 Description: OpenShift...

7.2CVSS7.2AI score0.01112EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2023/11/29 1:40 a.m.50 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.11.54 bug fix and security update

Red Hat OpenShift Container Platform release 4.11.54 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a...

7.5CVSS7.1AI score0.99999EPSS
Exploits19References11
RedHat Linux
RedHat Linux
added 2023/11/16 8:31 p.m.65 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.12.43 bug fix and security update

Red Hat OpenShift Container Platform release 4.12.43 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

7.5CVSS7.1AI score0.99999EPSS
Exploits19References14
NVD
NVD
added 2023/11/02 3:15 a.m.18 views

CVE-2023-5408

A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. A remote attacker who modifies the node role label could steer workloads from the control plane and etcd nodes onto different worker nodes and gain broader access to the clust...

7.2CVSS7.2AI score0.01112EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/10/31 12:54 p.m.54 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.14.0 bug fix and security update

Red Hat OpenShift Container Platform release 4.14.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a...

9.8CVSS7AI score0.99999EPSS
Exploits29References1323
RedHat Linux
RedHat Linux
added 2023/10/30 1:49 p.m.57 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.13.19 bug fix and security update

Red Hat OpenShift Container Platform release 4.13.19 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...

7.5CVSS7.1AI score0.99999EPSS
Exploits19References15
RedhatCVE
RedhatCVE
added 2023/10/04 10:31 p.m.54 views

CVE-2023-5408

A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. A remote attacker who modifies the node role label could steer workloads from the control plane and etcd nodes onto different worker nodes and gain broader access to the clust...

7.2CVSS7.3AI score0.01112EPSS
Exploits0References4
Rows per page
Query Builder