CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/05/23 7:58 a.m.•4 views

CVE-2024-33396

An issue in karmada-io karmada v1.9.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component...

8.4CVSS7.6AI score0.00031EPSS

Exploits0References1

Veracode•added 2025/01/13 1:46 a.m.•5 views

Privilege Escalation

github.com/karmada-io/karmada is vulnerable to Privilege Escalation. The vulnerability is due to pull mode clusters being registered with excessive access to control plane resources via the karmadactl register command, allowing them excessive privileges to control plane resources...

8.7CVSS6.7AI score0.00152EPSS

Exploits0References4Affected Software1

NVD•added 2024/05/02 7:15 p.m.•10 views

CVE-2024-33396

An issue in karmada-io karmada v1.9.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component...

8.4CVSS7.2AI score0.00031EPSS

Exploits0References1

CVE•added 2024/05/02 12:0 a.m.•52 views

CVE-2024-33396

CVE-2024-33396 affects karmada-io karmada up to v1.9.0. The issue allows a local attacker to execute arbitrary code by sending a crafted command to obtain the token component, enabling local privilege escalation. Affected versions are 1.9.0 and earlier; impact is local code execution with high se...

8.4CVSS7.5AI score0.00031EPSS

Exploits0References1

Vulnrichment•added 2024/05/02 12:0 a.m.•15 views

CVE-2024-33396

An issue in karmada-io karmada v1.9.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component...

7.5AI score0.00031EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by