Lucene search
+L

5 matches found

cvelist
cvelist
added 2026/06/25 5:56 p.m.29 views

CVE-2026-54250 K3s: ZIP Archive Path Traversal Vulnerability in etcd Snapshot Decompression

K3s is a fully conformant production-ready Kubernetes distribution. Prior to 1.35.3+k3s1, 1.34.6+k3s1, v1.33.10+k3s1, a path traversal vulnerability exists in K3s's etcd snapshot decompression functionality. Zip files containing archive members with maliciously crafted names can be written to...

5.8CVSS0.00122EPSS
Exploits0References1
cve
cve
added 2026/06/25 5:56 p.m.12 views

CVE-2026-54250

CVE-2026-54250 affects K3s by a ZIP archive path traversal in the etcd snapshot decompression. Before versions 1.35.3+k3s1, 1.34.6+k3s1, and v1.33.10+k3s1, a crafted ZIP member can be written to arbitrary filesystem locations when restoring an etcd snapshot, due to the decompression process. Impa...

5.8CVSS6AI score0.00122EPSS
Exploits0References1
wolfi
wolfi
added 2026/05/09 7:48 a.m.25 views

GHSA-H74G-238J-357M vulnerabilities

Vulnerabilities for packages: nerdctl, istio, zarf, hubble, juicefs, kaf, keda, kubernetes-dashboard, external-dns, grafana, go, aws-flb-firehose, helm, knative-eventing, karpenter, containerd, kubernetes, minio, kube-fluentd-operator, zot, libnvidia-container, prometheus, karma, vitess, argo-cd,...

6.1AI score
Exploits0
openvas
openvas
added 2022/07/21 12:0 a.m.22 views

Fedora: Security Advisory for origin (FEDORA-2022-3e1ade35db)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.0995EPSS
Exploits4References2
redhatcve
redhatcve
added 2019/05/31 6:21 a.m.25 views

CVE-2019-11245

In kubelet v1.13.6 and v1.14.2, containers for pods that do not specify an explicit runAsUser attempt to run as uid 0 root on container restart, or if the image was previously pulled to the node. If the pod specified mustRunAsNonRoot: true, the kubelet will refuse to start the container as root. ...

7.8CVSS0.2AI score0.00599EPSS
Exploits1References4
Rows per page
Query Builder