Lucene search
K

14 matches found

Hacker One
Hacker One
•added 2026/03/22 4:52 a.m.•11 views

AWS VDP: Health check errors silently dropped when channel buffer full

Component: pkg/plugin/plugin.go:153-156, pkg/plugin/pluginv2.go:156-158 Affected Version: aws-encryption-provider @ 4341c70 all versions Found by: Source audit TLP: TLP:Amber --- Summary When KMS operations fail, the error is sent to a buffered channel healthCheckErrc, size 100 via a non-blocking...

6AI score
Exploits0
Tenable Nessus
Tenable Nessus
•added 2025/08/27 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2019-11248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port...

8.2CVSS6.8AI score0.61139EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
•added 2023/11/27 12:0 a.m.•3 views

VulnCheck KEV: CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS6.8AI score0.61139EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2023/07/21 12:0 a.m.•5 views

PT-2023-26185 ¡ Dapr ¡ Dapr

Name of the Vulnerable Software and Affected Versions: Dapr versions prior to 1.10.9 Dapr versions prior to 1.11.2 Description: A vulnerability has been found in Dapr that allows bypassing API token authentication with a well-crafted HTTP request. This issue impacts Dapr users who have configured...

7.5CVSS7.3AI score0.01129EPSS
Exploits1References11
SUSE CVE
SUSE CVE
•added 2023/02/15 4:12 a.m.•3 views

SUSE CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS7.1AI score0.61139EPSS
Exploits0References3
Hacker One
Hacker One
•added 2022/06/20 8:44 p.m.•193 views

8x8: CVE-2019-11248 on http://█.█.█.█:9100/debug/pprof/goroutine

@mrk0anti reported to us an exposed debugging endpoint /debug/pprof over the unauthenticated Kubelet healthz port 9100. No sensitive information has been disclosed & the affected host belonged to our staging environment. The issue has been rectified...

6.4CVSS6.8AI score0.61139EPSS
Exploits0
Veracode
Veracode
•added 2020/01/15 6:19 a.m.•21 views

Exposed Endpoints

github.com/kubernetes/ingress-nginx is uses publicly exposed endpoints. The prometheus metrics and healthz of the Kubernetes defaultbackend can be accessed by a remote attacker using a port-forward request to access the publicly accessible metrics...

5.3CVSS3AI score0.01138EPSS
Exploits0References2Affected Software1
NVD
NVD
•added 2019/08/29 1:15 a.m.•31 views

CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS7AI score0.61139EPSS
Exploits0References3
OSV
OSV
•added 2019/08/29 1:15 a.m.•33 views

CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS6.5AI score
Exploits0References3
OSV
OSV
•added 2019/08/29 1:15 a.m.•1 views

DEBIAN-CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS6.8AI score0.61139EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2019/08/29 1:15 a.m.•105 views

CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS6.8AI score0.61139EPSS
Exploits0References3
OSV
OSV
•added 2019/08/29 1:15 a.m.•4 views

UBUNTU-CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS6.8AI score0.61139EPSS
Exploits0References4
Prion
Prion
•added 2019/08/29 1:15 a.m.•32 views

Default configuration

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

6.4CVSS7.7AI score0.61139EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
•added 2019/08/29 12:26 a.m.•42 views

CVE-2019-11248 Kubernetes kubelet exposes /debug/pprof info on healthz port

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

6.5CVSS7.9AI score0.61139EPSS
Exploits0References3
Rows per page
Query Builder