Lucene search
+L

15 matches found

EUVD
EUVD
added 2025/12/15 12:30 a.m.5 views

EUVD-2025-203310

A half-blind Server Side Request Forgery SSRF vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network including link-local ...

5.8CVSS6.2AI score0.00361EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/08/08 11:36 p.m.6 views

SUSE CVE-2023-5528

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

8.8CVSS7AI score0.03578EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.32 views

CBL Mariner 2.0 Security Update: kubernetes (CVE-2023-5528)

The version of kubernetes installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5528 advisory. - A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on...

8.8CVSS7.6AI score0.03578EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/20 5:46 p.m.25 views

Security Bulletin: IBM Cloud Pak for Data Scheduling is vulnerable to remote authentication attack due to Kubernetes Scheduler code ( CVE-2023-5528 )

Summary Kubernetes Scheduler code is used by IBM Cloud Pak for Data Scheduling as part of the scheduling binaries. CVE-2023-5528. Vulnerability Details CVEID:CVE-2023-5528 DESCRIPTION: Kubernetes kubelet could allow a remote authenticated attacker to gain elevated privileges on the system, caused...

8.8CVSS7.7AI score0.03578EPSS
Exploits0Affected Software1
Microsoft CVE
Microsoft CVE
added 2023/11/20 8:0 a.m.4 views

Kubernetes - Windows nodes - Insufficient input sanitization in in-tree storage plugin leads to privilege escalation

...

8.8CVSS7.5AI score0.03578EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2023/11/15 6:34 p.m.38 views

CVE-2023-5528

A flaw was found in Kubernetes, where a user who can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

8.8CVSS7.4AI score0.03578EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2023/11/14 9:31 p.m.41 views

Kubernetes Improper Input Validation vulnerability

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

8.8CVSS7.1AI score0.03578EPSS
Exploits0References13Affected Software1
NVD
NVD
added 2023/11/14 9:15 p.m.27 views

CVE-2023-5528

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

8.8CVSS0.03578EPSS
Exploits0References6
OSV
OSV
added 2023/11/14 9:15 p.m.8 views

AZL-34894 CVE-2023-5528 affecting package kubernetes for versions less than 1.28.7-2

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

8.8CVSS7.1AI score0.03578EPSS
Exploits0References1
OSV
OSV
added 2023/11/14 9:15 p.m.8 views

AZL-32005 CVE-2023-5528 affecting package kubernetes for versions less than 1.28.4-1

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

8.8CVSS7.1AI score0.03578EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 9:15 p.m.26 views

Security feature bypass

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

6.5CVSS7.1AI score0.03578EPSS
Exploits0References6Affected Software2
UbuntuCve
UbuntuCve
added 2023/11/14 9:15 p.m.42 views

CVE-2023-5528

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

8.8CVSS7AI score0.03578EPSS
Exploits0References3
OSV
OSV
added 2023/11/14 8:32 p.m.23 views

CVE-2023-5528 Kubernetes - Windows nodes - Insufficient input sanitization in in-tree storage plugin leads to privilege escalation

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

7.2CVSS7AI score0.03578EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2023/11/14 8:32 p.m.31 views

CVE-2023-5528

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

8.8CVSS8.4AI score0.03578EPSS
Exploits0
Kubernetes Security Advisories
Kubernetes Security Advisories
added 2023/11/14 3:54 p.m.7 views

Insufficient input sanitization in in-tree storage plugin leads to privilege escalation on Windows nodes

CVSS Rating: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H - HIGH 7.2 A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they ar...

8.8CVSS6.9AI score0.03578EPSS
Exploits0Affected Software1
Rows per page
Query Builder