Lucene search
K

6 matches found

Cvelist
Cvelist
added 2025/03/11 12:0 a.m.30 views

CVE-2025-26701

An issue was discovered in Percona PMM Server OVA before 3.0.0-1.ova. The default service account credentials can lead to SSH access, use of Sudo to root, and sensitive data exposure. This is fixed in PMM2 2.42.0-1.ova, 2.43.0-1.ova, 2.43.1-1.ova, 2.43.2-1.ova, and 2.44.0-1.ova and in PMM3...

10CVSS0.00441EPSS
Exploits0References1
OSV
OSV
added 2025/01/23 8:25 p.m.5 views

CVE-2025-23012 Fedora Repository fedoraIntCallUser default credentials

Fedora Repository 3.8.x includes a service account fedoraIntCallUser with default credentials and privileges to read read local files by manipulating datastreams. Fedora Repository 3.8.1 was released on 2015-06-11 and is no longer maintained. Migrate to a currently supported version 6.5.1 as of...

8.7CVSS7.1AI score0.00412EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/01/23 12:0 a.m.4 views

Fedora 安全漏洞

Fedora is a set of Linux operating systems from the Fedora community. A security vulnerability exists in Fedora version 3.8.x that stems from the presence of default service account credentials and permissions, which allows an attacker to read local files by manipulating the data stream...

8.7CVSS6.2AI score0.00412EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2023/07/19 9:34 a.m.32 views

Bad.Build Flaw in Google Cloud Build Raises Concerns of Privilege Escalation

Cybersecurity researchers have uncovered a privilege escalation vulnerability in Google Cloud that could enable malicious actors tamper with application images and infect users, leading to supply chain attacks. The issue, dubbed Bad.Build, is rooted in the Google Cloud Build service, according to...

7.1AI score
Exploits0
OSV
OSV
added 2019/04/10 2:29 p.m.21 views

CVE-2018-20321

An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default service account in a pod, and then use that pod to execute administrative privileged commands against the k8s cluster. This could be mitigated by isolating the...

8.8CVSS7.2AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/04/10 12:0 a.m.8 views

PT-2019-10045 · Rancher · Rancher

Name of the Vulnerable Software and Affected Versions: Rancher versions 2.0.0 through 2.1.5 Description: An issue allows project members with access to the default namespace to execute administrative privileged commands against the k8s cluster by mounting the netes-default service account in a po...

9CVSS8.5AI score0.01799EPSS
Exploits0References19
Rows per page
Query Builder