Lucene search
+L

65 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-27932

Malicious code in bioql PyPI...

6.4AI score0.00134EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/08/19 11:22 p.m.5 views

SUSE CVE-2025-38607

In the Linux kernel, the following vulnerability has been resolved: bpf: handle jset if a & b ... as a jump in CFG computation BPFJSET is a conditional jump and currently verifier.c:canjump does not know about that. This can lead to incorrect live registers and SCC computation. E.g. in the...

5.5CVSS6.4AI score0.00134EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/19 5:3 p.m.15 views

CVE-2025-38607 bpf: handle jset (if a & b ...) as a jump in CFG computation

In the Linux kernel, the following vulnerability has been resolved: bpf: handle jset if a & b ... as a jump in CFG computation BPFJSET is a conditional jump and currently verifier.c:canjump does not know about that. This can lead to incorrect live registers and SCC computation. E.g. in the...

0.00134EPSS
Exploits0References3
OSV
OSV
added 2024/11/18 1:23 p.m.19 views

SUSE-SU-2024:4011-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: golang-github-lusitaniae-apacheexporter: - Security issues fixed: CVE-2023-3978: Fixed security bug in x/net dependency bsc1213933 - Other changes and issues fixed: Delete unpackaged debug files for RHEL Do not include source files in the package for RHEL 9...

6.1CVSS7.8AI score0.00843EPSS
Exploits0References22
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/10/16 1:17 p.m.2 views

Malicious code in scc-quack (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/10/16 1:17 p.m.2 views

MAL-2024-9827 Malicious code in scc-quack (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
Veeam
Veeam
added 2024/06/17 12:0 a.m.15 views

Security Context Constraints(SCC) capabilities setting for Generic Storage Backup and Restore with OCP 4.11 or higher

Purpose This article describes Security Context ConstraintsSCC capabilities that need to be added to use Generic Backup and Restore feature capabilities on OCP 4.11 and higher. Known Issues With OCP 4.11, default security context constraints SCC have changed. Due to this, when using Generic Stora...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2024/05/15 12:0 a.m.591 views

SAP Cloud Connector 2.16.1 Missing Validation

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Tolerating Self-Signed Certificates product: SAP® Cloud Connector vulnerable version: 2.15.0 - 2.16.1 Portable and Installer fixed version: 2.16.2 Portable and Installer...

7.4CVSS7.1AI score0.00544EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2024/05/07 2:48 a.m.6 views

SUSE CVE-2023-1260

An authentication bypass vulnerability was discovered in kube-apiserver. This issue could allow a remote, authenticated attacker who has been given permissions "update, patch" the "pods/ephemeralcontainers" subresource beyond what the default is. They would then need to create a new pod or patch...

8CVSS7AI score0.01569EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2023/09/24 3:30 a.m.48 views

kube-apiserver authentication bypass vulnerability

An authentication bypass vulnerability was discovered in kube-apiserver. This issue could allow a remote, authenticated attacker who has been given permissions "update, patch" the "pods/ephemeralcontainers" subresource beyond what the default is. They would then need to create a new pod or patch...

8CVSS7AI score0.01569EPSS
Exploits0References11Affected Software1
NVD
NVD
added 2023/09/24 1:15 a.m.32 views

CVE-2023-1260

An authentication bypass vulnerability was discovered in kube-apiserver. This issue could allow a remote, authenticated attacker who has been given permissions "update, patch" the "pods/ephemeralcontainers" subresource beyond what the default is. They would then need to create a new pod or patch...

8CVSS7.8AI score0.01569EPSS
Exploits0References9
Prion
Prion
added 2023/09/24 1:15 a.m.17 views

Authentication flaw

An authentication bypass vulnerability was discovered in kube-apiserver. This issue could allow a remote, authenticated attacker who has been given permissions "update, patch" the "pods/ephemeralcontainers" subresource beyond what the default is. They would then need to create a new pod or patch...

4.3CVSS8.9AI score0.01569EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/24 12:0 a.m.6 views

PT-2023-16844 · Kubernetes · Kube-Apiserver

Name of the Vulnerable Software and Affected Versions: kube-apiserver affected versions not specified Description: An authentication bypass issue was discovered in kube-apiserver, allowing a remote, authenticated attacker with update, patch permissions on the pods/ephemeralcontainers subresource ...

8CVSS6.8AI score0.01569EPSS
Exploits0References20
OSV
OSV
added 2023/02/16 9:56 p.m.77 views

GO-2023-1549 Improper input validation in github.com/openshift/apiserver-library-go

Low-privileged users can set the seccomp profile for pods they control to "unconfined." By default, the seccomp profile used in the restricted-v2 Security Context Constraint SCC is "runtime/default," allowing users to disable seccomp for pods they can create and modify...

6.3CVSS6.3AI score0.00647EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2020:0278-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01546EPSS
Exploits1References2
CVE
CVE
added 2021/06/02 11:48 a.m.135 views

CVE-2020-14336

CVE-2020-14336 affects Red Hat OpenShift Container Platform via the Restricted Security Context Constraints (SCC), allowing pods to craft custom network packets and potentially cause a denial-of-service on a cluster when pods are deployed. The issue primarily impacts availability. Remediation is ...

6.5CVSS6.1AI score0.0093EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2020:3147-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.98507EPSS
Exploits40References10
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.52 views

SUSE SLES15 Security Update : rmt-server (SUSE-SU-2020:3160-1)

This update for rmt-server fixes the following issues : Version 2.6.5 Solved potential bug of SCC repository URLs changing over time. RMT now self heals by removing the previous invalid repository and creating the correct one. Version 2.6.4 Add web server settings to /etc/rmt.conf: Now it's...

9.8CVSS7.2AI score0.98507EPSS
Exploits40References38
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.43 views

SUSE SLES15 Security Update : rmt-server (SUSE-SU-2020:3147-1)

This update for rmt-server fixes the following issues : Version 2.6.5 Solved potential bug of SCC repository URLs changing over time. RMT now self heals by removing the previous invalid repository and creating the correct one. Version 2.6.4 Add web server settings to /etc/rmt.conf: Now it's...

9.8CVSS7.2AI score0.98507EPSS
Exploits40References38
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.51 views

SUSE SLES15 Security Update : rmt-server (SUSE-SU-2020:3036-1)

This update for rmt-server fixes the following issues : Update to version 2.6.5: Solved potential bug of SCC repository URLs changing over time. RMT now self heals by removing the previous invalid repository and creating the correct one. Add web server settings to /etc/rmt.conf: Now it's possible...

9.8CVSS7AI score0.98507EPSS
Exploits40References40
Rows per page
Query Builder