Lucene search
K

17 matches found

RedHat Linux
RedHat Linux
added 2026/06/12 9:36 p.m.8 views

Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: kubernetes1.35: kubernetes1.35-1.35.6-1.hum1 aarch64, x8664 kubernetes1.35-client-1.35.6-1.hum1 aarch64, x8664 kubernetes1.35-kubeadm-1.35.6-1.hum1 aarch64, x8664...

5.5CVSS5.2AI score0.00168EPSS
Exploits1References3
Snyk
Snyk
added 2025/11/07 7:44 p.m.2 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to the virt-api component failing to validate the CN field in client TLS certificates against allowed values in the extension-apiserver-authentication configmap. An attacker can...

6.5CVSS5.4AI score0.00129EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-6496

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00513EPSS
Exploits0References5
Snyk
Snyk
added 2025/08/27 4:47 p.m.2 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via the NodeRestriction admission controller. An attacker can cause unauthorized deletion of node objects by patching them with an OwnerReference to a cluster-scoped resource, resulting in the node being deleted...

8.6CVSS6.9AI score0.00434EPSS
Exploits0References2
Snyk
Snyk
added 2025/06/23 6:30 p.m.2 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via the NodeRestriction admission controller process. An attacker can access unauthorized dynamic resources by creating mirror pods during pod creation when the DynamicResourceAllocation feature gate is enabled...

5.1CVSS6.9AI score0.0065EPSS
Exploits0References2
Snyk
Snyk
added 2025/06/23 6:30 p.m.2 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via the NodeRestriction admission controller process. An attacker can access unauthorized dynamic resources by creating mirror pods during pod creation when the DynamicResourceAllocation feature gate is enabled...

5.1CVSS6.9AI score0.0065EPSS
Exploits0References2
Snyk
Snyk
added 2025/06/23 6:30 p.m.2 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via the NodeRestriction admission controller process. An attacker can access unauthorized dynamic resources by creating mirror pods during pod creation when the DynamicResourceAllocation feature gate is enabled...

5.1CVSS6.9AI score0.0065EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:46 a.m.7 views

CVE-2023-22651

Improper Privilege Management vulnerability in SUSE Rancher allows Privilege Escalation. A failure in the update logic of Rancher's admission Webhook may lead to the misconfiguration of the Webhook. This component enforces validation rules and security checks before resources are admitted into th...

9.9CVSS6.9AI score0.00779EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2025/03/13 3:10 p.m.5 views

CVE-2025-0426 affecting package kubernetes for versions less than 1.30.10-1

CVE-2025-0426 affecting package kubernetes for versions less than 1.30.10-1. An upgraded version of the package is available that resolves this issue...

6.2CVSS6.4AI score0.00349EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 11:55 p.m.8 views

CVE-2022-29164

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact with the Argo Serv...

7.1CVSS6AI score0.0086EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2024/12/19 12:10 a.m.12 views

CVE-2024-10220 affecting package kubernetes for versions less than 1.30.3-1

CVE-2024-10220 affecting package kubernetes for versions less than 1.30.3-1. An upgraded version of the package is available that resolves this issue...

8.1CVSS6.5AI score0.03001EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/03/13 12:0 a.m.4 views

PT-2024-2562 · Argo Cd · Argo Cd

Name of the Vulnerable Software and Affected Versions: Argo CD versions 1.2.0-rc1 through 2.10.2 Argo CD versions 1.2.0-rc1 through 2.9.7 Argo CD versions 1.2.0-rc1 through 2.8.11 Description: The issue is related to improper validation in Argo CD, a declarative, GitOps continuous delivery tool f...

6.4CVSS7.3AI score0.00532EPSS
Exploits0References14
Oracle linux
Oracle linux
added 2022/07/12 12:0 a.m.155 views

olcne security update

olcne 1.5.4-3 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over 1.5.4-2 - Istio CVE-2022-31045, CVE-2022-29225, CVE-2022-29224,CVE-2022-29226,CVE-2022-29228,CVE-2022-29227 1.5.4-1 - Upgrade Kubernetes to 1.23.7 1.5.3-1 - Address qemu...

10CVSS8AI score0.02701EPSS
Exploits1
Snyk
Snyk
added 2022/05/24 4:44 p.m.2 views

Improper Removal of Sensitive Information Before Storage or Transfer

Overview Affected versions of this package are vulnerable to Improper Removal of Sensitive Information Before Storage or Transfer via the rest.AnonymousClientConfig method that does not effectively clear service account credentials loaded using rest.InClusterConfig. An attacker can gain...

9.2CVSS7.1AI score0.01492EPSS
Exploits0References2
Snyk
Snyk
added 2022/05/24 4:44 p.m.1 views

Improper Removal of Sensitive Information Before Storage or Transfer

Overview Affected versions of this package are vulnerable to Improper Removal of Sensitive Information Before Storage or Transfer via the rest.AnonymousClientConfig method that does not effectively clear service account credentials loaded using rest.InClusterConfig. An attacker can gain...

9.2CVSS7.1AI score0.01492EPSS
Exploits0References2
Snyk
Snyk
added 2022/05/24 4:44 p.m.1 views

Improper Removal of Sensitive Information Before Storage or Transfer

Overview Affected versions of this package are vulnerable to Improper Removal of Sensitive Information Before Storage or Transfer via the rest.AnonymousClientConfig method that does not effectively clear service account credentials loaded using rest.InClusterConfig. An attacker can gain...

9.2CVSS7.1AI score0.01492EPSS
Exploits0References2
Kubernetes Security Advisories
Kubernetes Security Advisories
added 2020/07/13 6:39 p.m.5 views

Node disk DOS by writing to container /etc/hosts

CVSS Rating: Medium 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/CR:H/IR:H/AR:M The /etc/hosts file mounted in a pod by kubelet is not included by the kubelet eviction manager when calculating ephemeral storage usage by a pod. If a pod writes a large amount of data to the /etc/hosts file, it...

5.5CVSS6.6AI score0.00501EPSS
Exploits0Affected Software1
Rows per page
Query Builder