Lucene search
K

8 matches found

NVD
NVD
added 2026/06/01 7:16 p.m.12 views

CVE-2026-22872

Capsule is a multi-tenancy and policy-based framework for Kubernetes. The Capsule Controller runs with cluster-admin privileges. Although the TenantResource RawItems processing logic forcibly sets the namespace, this is ineffective for cluster-scoped resources. Prior to version 0.13.0, tenant...

9.1CVSS0.0043EPSS
Exploits1References2
CVE
CVE
added 2026/06/01 5:42 p.m.48 views

CVE-2026-22872

CVE-2026-22872 affects Capsule, a Kubernetes multi-tenant framework. The Capsule Controller runs with cluster-admin privileges. The vulnerability lies in TenantResource RawItems processing: the code sets the namespace on deserialized objects, but this is ignored for cluster-scoped resources, allo...

9.1CVSS5.8AI score0.0043EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:51 a.m.6 views

CVE-2022-42442

IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to exposure of the first tenant owner e-mail address to users with access to the container platform. IBM X-Force ID: 238214...

3.3CVSS6.4AI score0.00179EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:33 a.m.6 views

CVE-2024-39690

Capsule is a multi-tenancy and policy-based framework for Kubernetes. In Capsule v0.7.0 and earlier, the tenant-owner can patch any arbitrary namespace that has not been taken over by a tenant i.e., namespaces without the ownerReference field, thereby gaining control of that namespace. Version...

8.8CVSS6.6AI score0.0051EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-2618

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.0051EPSS
Exploits1References4
OSV
OSV
added 2024/08/22 8:3 p.m.34 views

GO-2024-3077 Capsule tenant owner with "patch namespace" permission can hijack system namespaces in github.com/projectcapsule/capsule

Capsule tenant owner with "patch namespace" permission can hijack system namespaces in github.com/projectcapsule/capsule...

8.8CVSS8.6AI score0.0051EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/08/20 12:0 a.m.4 views

Capsule 安全漏洞

Capsule is a multi-tenant and policy-based framework for Kubernetes open-sourced by Project Capsule. A security vulnerability exists in Capsule version v0.7.0, which stems from the ability of a tenant owner to patch any arbitrary namespace that has not been taken over by the tenant, and thus gain...

8.8CVSS6.7AI score0.0051EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/11/03 12:0 a.m.9 views

CVE-2022-42442 IBM Robotic Process Automation for Cloud Pak information disclosure

IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to exposure of the first tenant owner e-mail address to users with access to the container platform. IBM X-Force ID: 238214...

6.4AI score0.00179EPSS
Exploits0References2
Rows per page
Query Builder