Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Veracode
Veracodeadded 2023/10/13 9:10 a.m.19 views

Privilege Escalation

kOps is vulnerable to Privilege Escalation. The vulnerability is caused when running kOps with the GCP Provider in Gossip Mode, where Node service account credentials could be used by a container running in the cluster to retrieve sensitive information from the state storage bucket and escalate t...

8.8CVSS6.6AI score0.00095EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTECadded 2023/06/22 12:0 a.m.1 views

The vulnerability of the GCP Provider component of the automated Kubernetes cluster management system software allows a attacker to increase their privileges.

The vulnerability of the GCP Provider component of the automated Kubernetes cluster management system software relates to permission handling errors. Exploiting this vulnerability could allow an attacker to enhance their privileges by using a container that operates within a cluster, through...

8CVSS0.00095EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2023/06/22 12:0 a.m.2 views

PT-2023-3195 · Kops · Kops

Name of the Vulnerable Software and Affected Versions: kOps affected versions not specified Description: The issue is related to errors in permission handling in the GCP Provider component of the kOps tool, which is used for automated management of Kubernetes virtual machine clusters. Exploitatio...

8.8CVSS7.2AI score0.00095EPSS
Exploits0References13
Rows per page
Query Builder