Lucene search
K

22 matches found

Cvelist
Cvelist
added yesterday26 views

CVE-2026-15584 Redhatinsights/incluster-checks: incluster-checks: privileged host-chroot debug pods created in shared default namespace enable privilege escalation to node root

A privilege escalation vulnerability was found in the incluster-checks tool for OpenShift. The tool creates privileged debug pods with host filesystem access in the shared default namespace, where any user with the standard edit role can exec into them and obtain root access on cluster nodes...

7.5CVSS
Exploits0References2
CVE
CVE
added yesterday12 views

CVE-2026-15584

The CVE-2026-15584 issue concerns the incluster-checks tool in OpenShift. It describes a privilege-escalation flaw where the tool creates privileged debug pods with host filesystem access in the shared default namespace. Any user possessing the standard edit role can execute into these pods and o...

7.5CVSS6AI score
Exploits0References2
RedhatCVE
RedhatCVE
added yesterday6 views

CVE-2026-15584

A privilege escalation vulnerability was found in the incluster-checks tool for OpenShift. The tool creates privileged debug pods with host filesystem access in the shared default namespace, where any user with the standard edit role can exec into them and obtain root access on cluster nodes...

7.5CVSS6AI score
Exploits0References3
Positive Technologies
Positive Technologies
added yesterday9 views

PT-2026-57811

Name of the Vulnerable Software and Affected Versions OpenShift affected versions not specified Description A privilege escalation issue exists in the incluster-checks tool. This tool creates privileged debug pods that grant access to the host filesystem within the shared default namespace...

7.5CVSS6.2AI score
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/11/11 8:21 a.m.10 views

kernel: hv_netvsc: Fix panic during namespace deletion with VF

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: Fix panic during namespace deletion with VF The existing code move the VF NIC to new namespace when NETDEVREGISTER is received on netvsc NIC. During deletion of the namespace, defaultdeviceexitbatch defaultdeviceexitnet...

5.5CVSS5.7AI score0.00159EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-1305

Malware in sbrugna...

9CVSS8.6AI score0.01799EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-26786

Malicious code in bioql PyPI...

6.2AI score0.00159EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/09/04 3:32 p.m.10 views

CVE-2025-38683 hv_netvsc: Fix panic during namespace deletion with VF

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: Fix panic during namespace deletion with VF The existing code move the VF NIC to new namespace when NETDEVREGISTER is received on netvsc NIC. During deletion of the namespace, defaultdeviceexitbatch defaultdeviceexitnet...

0.00159EPSS
Exploits0References8
CVE
CVE
added 2025/09/04 3:32 p.m.34 views

CVE-2025-38683

CVE-2025-38683 affects hv_netvsc in the Linux kernel. The issue arises during namespace deletion when a VF NIC is moved to a new namespace and then back, causing netdev list handling to dereference NULL and trigger a kernel panic. The supplied references describe the root cause as a race in defau...

5.5CVSS5.7AI score0.00159EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2025/09/04 3:32 p.m.5 views

CVE-2025-38683 hv_netvsc: Fix panic during namespace deletion with VF

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: Fix panic during namespace deletion with VF The existing code move the VF NIC to new namespace when NETDEVREGISTER is received on netvsc NIC. During deletion of the namespace, defaultdeviceexitbatch defaultdeviceexitnet...

5.5CVSS7AI score0.00159EPSS
Exploits0References14
Talos
Talos
added 2025/08/25 12:0 a.m.8 views

The Biosig Project libbiosig MFER default NS mismatch heap-based buffer overflow vulnerability

Talos Vulnerability Report TALOS-2025-2237 The Biosig Project libbiosig MFER default NS mismatch heap-based buffer overflow vulnerability August 25, 2025 CVE Number CVE-2025-53511 SUMMARY A heap-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project...

9.8CVSS6.9AI score0.00689EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 6:6 a.m.4 views

SUSE CVE-2008-5024

Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, which allows remote attackers to conduct XML injection attacks via the default namespace in an E4X...

7.5CVSS9AI score0.03641EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2021/06/23 5:57 p.m.75 views

Access Control Bypass

An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default service account in a pod, and then use that pod to execute administrative privileged commands against the k8s cluster. This could be mitigated by isolating the...

9CVSS4.4AI score0.01799EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2019/04/10 2:29 p.m.26 views

CVE-2018-20321

An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default service account in a pod, and then use that pod to execute administrative privileged commands against the k8s cluster. This could be mitigated by isolating the...

9CVSS8.8AI score0.01799EPSS
Exploits0References2
Prion
Prion
added 2019/04/10 2:29 p.m.24 views

Design/Logic Flaw

An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default service account in a pod, and then use that pod to execute administrative privileged commands against the k8s cluster. This could be mitigated by isolating the...

9CVSS8.7AI score0.01799EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/04/10 2:29 p.m.21 views

CVE-2018-20321

An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default service account in a pod, and then use that pod to execute administrative privileged commands against the k8s cluster. This could be mitigated by isolating the...

8.8CVSS7.2AI score
Exploits0References2
CVE
CVE
added 2019/04/10 1:59 p.m.73 views

CVE-2018-20321

This CVE (CVE-2018-20321) affects Rancher 2.x (through 2.1.5). A project member with access to the default namespace can mount the kubernetes default service account in a pod and use it to run privileged commands against the Kubernetes cluster. The documented mitigation is to isolate the default ...

9CVSS8.7AI score0.01799EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/04/10 1:59 p.m.33 views

CVE-2018-20321

An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default service account in a pod, and then use that pod to execute administrative privileged commands against the k8s cluster. This could be mitigated by isolating the...

8.8AI score0.01799EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/04/10 12:0 a.m.16 views

PT-2019-10045 · Rancher · Rancher

Name of the Vulnerable Software and Affected Versions: Rancher versions 2.0.0 through 2.1.5 Description: An issue allows project members with access to the default namespace to execute administrative privileged commands against the k8s cluster by mounting the netes-default service account in a po...

9CVSS8.5AI score0.01799EPSS
Exploits0References19
RedHat Linux
RedHat Linux
added 2008/11/20 1:7 a.m.4 views

Mozilla parsing error in E4X default namespace

Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, which allows remote attackers to conduct XML injection attacks via the default namespace in an E4X...

7.5CVSS7.4AI score0.03641EPSS
Exploits1References4
Rows per page
Query Builder