Lucene search
K

27 matches found

OSV
OSV
added 2024/11/19 5:20 p.m.13 views

GO-2024-3277 Kubernetes Nil pointer dereference in KCM after v1 HPA patch request in k8s.io/kubernetes

Kubernetes Nil pointer dereference in KCM after v1 HPA patch request in k8s.io/kubernetes...

7.7CVSS7.5AI score0.00598EPSS
Exploits0References7
Veracode
Veracode
added 2024/08/27 1:48 p.m.19 views

Race Condition

k8s.io/kubernetes is vulnerable to Race Condition. The vulnerability is caused due to Kubernetes attempts to prevent proxied connections from accessing link-local or localhost networks when making user-driven connections to Services, Pods, Nodes, or StorageClass service providers. As part of this...

3.5CVSS7AI score0.01082EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/08/21 4:3 p.m.12 views

GO-2022-0983 ANSI escape characters not filtered in kubectl in k8s.io/kubernetes

ANSI escape characters not filtered in kubectl in k8s.io/kubernetes...

3CVSS4.7AI score0.00778EPSS
Exploits0References5
OSV
OSV
added 2024/08/21 3:29 p.m.15 views

GO-2022-0890 Server Side Request Forgery (SSRF) in Kubernetes in k8s.io/kubernetes

Server Side Request Forgery SSRF in Kubernetes in k8s.io/kubernetes...

6.3CVSS5.2AI score0.03679EPSS
Exploits0References8
OSV
OSV
added 2024/08/21 3:29 p.m.18 views

GO-2022-0907 Access Restriction Bypass in kube-apiserver in k8s.io/kubernetes

Access Restriction Bypass in kube-apiserver in k8s.io/kubernetes...

6.5CVSS7.1AI score0.05524EPSS
Exploits1References8
OSV
OSV
added 2024/08/21 3:29 p.m.15 views

GO-2022-0885 Improper Authentication in Kubernetes in k8s.io/kubernetes

Improper Authentication in Kubernetes in k8s.io/kubernetes...

8.8CVSS8.6AI score0.03597EPSS
Exploits5References9
OSV
OSV
added 2024/08/21 3:29 p.m.10 views

GO-2022-0886 Kubernetes Arbitrary Command Injection in k8s.io/kubernetes

Kubernetes Arbitrary Command Injection in k8s.io/kubernetes...

9.8CVSS9.4AI score0.04107EPSS
Exploits0References5
OSV
OSV
added 2024/08/21 3:29 p.m.20 views

GO-2022-0802 Kubernetes kubectl cp Vulnerable to Symlink Attack in k8s.io/kubernetes

Kubernetes kubectl cp Vulnerable to Symlink Attack in k8s.io/kubernetes...

5.7CVSS6.2AI score0.0262EPSS
Exploits0References4
OSV
OSV
added 2024/08/21 3:28 p.m.24 views

GO-2022-0782 Symlink Attack in kubectl cp in k8s.io/kubernetes

Symlink Attack in kubectl cp in k8s.io/kubernetes...

6.4CVSS6AI score0.13164EPSS
Exploits2References11
OSV
OSV
added 2024/08/21 3:21 p.m.20 views

GO-2022-0703 XML Entity Expansion and Improper Input Validation in Kubernetes API server in k8s.io/kubernetes

XML Entity Expansion and Improper Input Validation in Kubernetes API server in k8s.io/kubernetes...

7.5CVSS7.5AI score0.25939EPSS
Exploits2References9
OSV
OSV
added 2024/08/21 2:30 p.m.12 views

GO-2023-2341 Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes

Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes...

8.8CVSS8.6AI score0.03578EPSS
Exploits0References12
OSV
OSV
added 2024/08/21 2:30 p.m.10 views

GO-2023-2170 Insufficient input sanitization on Windows nodes leads to privilege escalation in k8s.io/kubernetes and k8s.io/mount-utils

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes...

8.8CVSS8.6AI score0.03392EPSS
Exploits1References14
OSV
OSV
added 2024/08/21 2:30 p.m.15 views

GO-2023-2330 Insufficient input sanitization on Windows nodes leads to privilege escalation in k8s.io/kubernetes

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes...

8.8CVSS8.6AI score0.11668EPSS
Exploits1References15
OSV
OSV
added 2024/08/21 2:30 p.m.19 views

GO-2023-2159 Kube-proxy may unintentionally forward traffic in k8s.io/kubernetes

Kube-proxy may unintentionally forward traffic in k8s.io/kubernetes...

6.3CVSS6AI score0.00908EPSS
Exploits0References4
OSV
OSV
added 2024/08/20 8:32 p.m.15 views

GO-2023-1959 Kubernetes arbitrary file overwrite in k8s.io/kubernetes

Kubernetes arbitrary file overwrite in k8s.io/kubernetes...

5.5CVSS5.8AI score0.0159EPSS
Exploits0References4
OSV
OSV
added 2024/08/20 8:31 p.m.18 views

GO-2023-1946 Kubernetes DoS Vulnerability in k8s.io/kubernetes

Kubernetes DoS Vulnerability in k8s.io/kubernetes...

6.5CVSS6.7AI score0.10606EPSS
Exploits0References7
OSV
OSV
added 2024/08/20 8:31 p.m.19 views

GO-2023-1891 Vulnerable to policy bypass in kube-apiserver in k8s.io/kubernetes

Vulnerable to policy bypass in kube-apiserver in k8s.io/kubernetes...

6.5CVSS6AI score0.01134EPSS
Exploits0References9
OSV
OSV
added 2024/08/20 8:31 p.m.16 views

GO-2023-1864 Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes

Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes...

5.5CVSS4.7AI score0.00257EPSS
Exploits0References10
OSV
OSV
added 2024/08/20 8:29 p.m.14 views

GO-2023-1629 Kubernetes vulnerable to validation bypass in k8s.io/kubernetes

Kubernetes vulnerable to validation bypass in k8s.io/kubernetes...

8.8CVSS8.5AI score0.01618EPSS
Exploits0References4
OSV
OSV
added 2024/08/20 8:29 p.m.17 views

GO-2023-1628 Kubernetes vulnerable to path traversal in k8s.io/kubernetes

Kubernetes vulnerable to path traversal in k8s.io/kubernetes...

6.5CVSS7.2AI score0.01191EPSS
Exploits0References4
Rows per page
Query Builder