Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.9 views

RHCOS 4 : OpenShift Container Platform 4.14.23 (RHSA-2024:2054)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2054 advisory. - kubernetes: kube-apiserver: bypassing mountable secrets policy imposed by the ServiceAccount admission plugin CVE-2024-3177 -...

4.3CVSS6.7AI score0.02224EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2025/08/14 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2025:02423-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7.5AI score0.02224EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.10 views

openSUSE Security Advisory (SUSE-SU-2024:1404-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.7CVSS6.3AI score0.02224EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.12 views

openSUSE Security Advisory (SUSE-SU-2024:1403-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.7CVSS6.3AI score0.02224EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2024/12/09 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2024-0389)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.03001EPSS
Exploits1References6
Mageia
Mageia
added 2024/12/06 5:9 p.m.37 views

Updated kubernetes packages fix security vulnerabilities

A security issue was discovered in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using containers, init containers, and ephemeral containers with the envFrom field populated. The policy ensures...

8.1CVSS7AI score0.03001EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2024/09/21 12:0 a.m.56 views

openSUSE: Security Advisory for kubernetes1.23 (SUSE-SU-2024:3341-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS8.5AI score0.99999EPSS
Exploits21References4
OpenVAS
OpenVAS
added 2024/09/20 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2024:3343-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS8.5AI score0.99999EPSS
Exploits21References20
Tenable Nessus
Tenable Nessus
added 2024/09/20 12:0 a.m.62 views

SUSE SLES15 Security Update : kubernetes1.24 (SUSE-SU-2024:3343-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3343-1 advisory. - CVE-2021-25743: escape, meta and control sequences in raw data output to terminal not neutralized. bsc1194400 - CVE-2023-2727:...

7.7CVSS7.4AI score0.99999EPSS
Exploits21References34
OpenVAS
OpenVAS
added 2024/09/20 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2024:3341-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS8.5AI score0.99999EPSS
Exploits21References20
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/01 4:16 p.m.30 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in Kubernetes kube-apiserver [ CVE-2024-3177]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in Kubernetes kube-apiserver, caused by a flaw when using containers, init containers, and ephemeral containers with the envFrom field populated CVE-2024-3177. Kubernetes...

2.7CVSS3.7AI score0.02224EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2024/06/27 1:18 p.m.28 views

Important: Red Hat Security Advisory: Red Hat build of MicroShift 4.16.0 security update

Red Hat build of MicroShift release 4.16.0 is now available with updates to packages and images that include a security update. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.5CVSS6.8AI score0.02224EPSS
Exploits1References18
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.19 views

CVE-2024-3177 affecting package kubernetes for versions less than 1.30.1-1

CVE-2024-3177 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

2.7CVSS6.9AI score0.02224EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.17 views

Fedora: Security Advisory (FEDORA-2024-ce2eefc399)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.91969EPSS
Exploits2References2
OSV
OSV
added 2024/05/24 11:8 a.m.4 views

OESA-2024-1626 kubernetes security update

Container cluster management. Security Fixes: A security issue was discovered in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using containers, init containers, and ephemeral containers with t...

2.7CVSS6.7AI score0.02224EPSS
Exploits1References2
OSV
OSV
added 2024/05/17 11:7 a.m.4 views

OESA-2024-1579 kubernetes security update

Container cluster management. Security Fixes: A security issue was discovered in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using containers, init containers, and ephemeral containers with t...

2.7CVSS6.7AI score0.02224EPSS
Exploits1References2
OSV
OSV
added 2024/05/17 11:7 a.m.4 views

OESA-2024-1577 kubernetes security update

Container cluster management. Security Fixes: A security issue was discovered in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using containers, init containers, and ephemeral containers with t...

2.7CVSS6.7AI score0.02224EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/29 9:37 a.m.25 views

Security Bulletin: IBM Cloud Kubernetes Service is affected by a Kubernetes API server security vulnerability (CVE-2024-3177)

Summary IBM Cloud Kubernetes Service is affected by a security vulnerability in the Kubernetes API server that may allow mountable secret policy enforcement to be bypassed during pod admission CVE-2024-3177. Vulnerability Details CVEID: CVE-2024-3177 Description: Kubernetes kube-apiserver could...

2.7CVSS3.9AI score0.02224EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.29 views

Fedora 40 : kubernetes (2024-ce2eefc399)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-ce2eefc399 advisory. Update Kubernetes to v1.29.4 for Fedora 40. Resolves CVE-2024-3177: Bypassing mountable secrets policy imposed by the ServiceAccount admission plugi...

7.5CVSS7.5AI score0.91969EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/04/25 12:0 a.m.38 views

Fedora 39 : kubernetes (2024-662a8b6005)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-662a8b6005 advisory. Updates Fedora 30 to Kubernetes 1.27.13. Resolves CVE-2024-3177: Bypassing mountable secrets policy imposed by the ServiceAccount admission plugin. In...

2.7CVSS6.9AI score0.02224EPSS
Exploits1References2
Rows per page
Query Builder