Lucene search
K

29 matches found

Github Security Blog
Github Security Blog
added 2023/05/09 7:58 p.m.31 views

On a compromised node, the fluid-csi service account can be used to modify node specs

Impact If a malicious user gains control of a Kubernetes node running fluid csi pod controlled by the csi-nodeplugin-fluid node-daemonset, he/she can leverage the fluid-csi service account to modify specs of all the nodes in the cluster. However, since this service account lacks "list node"...

7.8CVSS6.6AI score0.00236EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/17 12:0 a.m.3 views

PT-2023-21233 · Cilium +1 · Cilium +1

Name of the Vulnerable Software and Affected Versions: Cilium versions prior to 1.11.15 Cilium versions prior to 1.12.8 Cilium versions prior to 1.13.1 Description: Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An attacker with access to a Cilium agent...

5.5CVSS7AI score0.00217EPSS
Exploits0References19
SUSE CVE
SUSE CVE
added 2023/02/15 4:1 a.m.3 views

SUSE CVE-2020-8559

The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise...

6.8CVSS7AI score0.061EPSS
Exploits3References3
OSV
OSV
added 2020/09/25 4:23 a.m.3 views

CVE-2019-7177

Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin...

7.2CVSS7.1AI score0.0136EPSS
Exploits0References2
OSV
OSV
added 2020/07/22 2:15 p.m.1 views

DEBIAN-CVE-2020-8559

The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise...

6.8CVSS6.7AI score0.061EPSS
Exploits3References1
OSV
OSV
added 2020/07/22 2:15 p.m.27 views

CVE-2020-8559

The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise...

6.8CVSS7.2AI score
Exploits0References3
Prion
Prion
added 2020/07/22 2:15 p.m.26 views

Code injection

The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise...

6CVSS6.9AI score0.061EPSS
Exploits3References3Affected Software1
AlpineLinux
AlpineLinux
added 2020/07/22 1:47 p.m.42 views

CVE-2020-8559

The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise...

6.8CVSS6.7AI score0.061EPSS
Exploits3
Veracode
Veracode
added 2020/07/17 4:41 a.m.33 views

Privilege Escalation

An attacker is able to intercept certain requests to the Kubelet and send a redirect response that may be followed by a client using the credentials from the original request. This can lead to compromise of other nodes...

6.8CVSS6.7AI score0.061EPSS
Exploits3References6Affected Software77
Rows per page
Query Builder