Lucene search
K

100 matches found

Rockylinux
Rockylinux
added 2024/07/15 12:17 p.m.12 views

resource-agents bug fix update

An update is available for resource-agents. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The resource-agents packages provide the Pacemaker and RGManager...

7.2AI score
Exploits0
Rockylinux
Rockylinux
added 2024/06/14 2:0 p.m.19 views

resource-agents bug fix update

An update is available for resource-agents. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The resource-agents packages provide the Pacemaker and RGManager...

7.2AI score
Exploits0
OSV
OSV
added 2024/06/04 3:19 p.m.16 views

GO-2024-2727 Constellation has pods exposed to peers in VPC in github.com/edgelesssys/constellation

Constellation has pods exposed to peers in VPC in github.com/edgelesssys/constellation...

7AI score
Exploits0References2
OSV
OSV
added 2024/05/29 7:16 a.m.16 views

BIT-ARGO-CD-2024-31989 ArgoCD Vulnerable to Use of Risky or Missing Cryptographic Algorithms in Redis Cache

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. It has been discovered that an unprivileged pod in a different namespace on the same cluster could connect to the Redis server on port 6379. Despite having installed the latest version of the VPC CNI plugin on the EKS...

9CVSS8.8AI score0.01479EPSS
Exploits2References10
Qualys Blog
Qualys Blog
added 2024/05/22 5:53 p.m.24 views

TotalCloud Insights: Uncovering the Hidden Dangers in Google Cloud Dataproc

Summary The Apache Hadoop Distributed File System HDFS can be vulnerable to data compromise when a Compute Engine cluster is in a public-facing virtual private cloud VPC or shares the VPC with other Compute Engine instances. Google Cloud Platform GCP provides a default VPC called default. This VP...

8.3AI score
Exploits0
NVD
NVD
added 2024/05/21 7:15 p.m.17 views

CVE-2024-31989

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. It has been discovered that an unprivileged pod in a different namespace on the same cluster could connect to the Redis server on port 6379. Despite having installed the latest version of the VPC CNI plugin on the EKS...

9CVSS9AI score0.01479EPSS
Exploits2References9
Cvelist
Cvelist
added 2024/05/21 7:8 p.m.37 views

CVE-2024-31989 ArgoCD Vulnerable to Use of Risky or Missing Cryptographic Algorithms in Redis Cache

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. It has been discovered that an unprivileged pod in a different namespace on the same cluster could connect to the Redis server on port 6379. Despite having installed the latest version of the VPC CNI plugin on the EKS...

9CVSS8.9AI score0.01479EPSS
Exploits2References9
OSV
OSV
added 2024/05/21 7:8 p.m.14 views

CVE-2024-31989 ArgoCD Vulnerable to Use of Risky or Missing Cryptographic Algorithms in Redis Cache

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. It has been discovered that an unprivileged pod in a different namespace on the same cluster could connect to the Redis server on port 6379. Despite having installed the latest version of the VPC CNI plugin on the EKS...

9CVSS8.6AI score0.01479EPSS
Exploits2References11
CVE
CVE
added 2024/05/21 7:8 p.m.362 views

CVE-2024-31989

Argo CD (GitOps tool for Kubernetes) has a vulnerability where an unprivileged pod in a different namespace can reach the Redis server on port 6379, potentially leading to privilege escalation to the cluster controller or information leakage if Redis access is not restricted. The issue is mitigat...

9CVSS8.9AI score0.01479EPSS
Exploits2References9Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/21 7:8 p.m.24 views

CVE-2024-31989 ArgoCD Vulnerable to Use of Risky or Missing Cryptographic Algorithms in Redis Cache

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. It has been discovered that an unprivileged pod in a different namespace on the same cluster could connect to the Redis server on port 6379. Despite having installed the latest version of the VPC CNI plugin on the EKS...

9CVSS8.9AI score0.01479EPSS
Exploits2References9
Veracode
Veracode
added 2024/04/16 9:21 a.m.12 views

Firewall Bypass

github.com/edgelesssys/constellation is vulnerable to Firewall Bypass. The vulnerability is due to the world configuration which does not prevent unauthorized access to entities inside the cloud VPC to directly reach pods using their internal IP addresses...

7AI score
Exploits0
OSV
OSV
added 2024/04/15 6:13 p.m.12 views

GHSA-G8FC-VRCG-8VJG Constallation has pods exposed to peers in VPC

Impact Cilium allows outside actors world entity to directly access pods with their internal pod IP, even if they are not exposed explicitly e.g. via LoadBalancer. A pod that does not authenticate clients and that does not exclude world traffic via network policy may leak sensitive data to an...

6.8AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/04/15 6:13 p.m.11 views

Constallation has pods exposed to peers in VPC

Impact Cilium allows outside actors world entity to directly access pods with their internal pod IP, even if they are not exposed explicitly e.g. via LoadBalancer. A pod that does not authenticate clients and that does not exclude world traffic via network policy may leak sensitive data to an...

6.8AI score
Exploits0References4Affected Software1
OSV
OSV
added 2023/11/18 3:24 a.m.22 views

MAL-2023-8531 Malicious code in vpc-nat-gateway-dependency (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c9417e9eb52b089fd432e5dd38464df3ef02177d6b0d26f9fc664ef56591c4ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/11/18 3:24 a.m.3 views

Malicious code in vpc-nat-gateway-dependency (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c9417e9eb52b089fd432e5dd38464df3ef02177d6b0d26f9fc664ef56591c4ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References1
The Hacker News
The Hacker News
added 2023/08/02 11:50 a.m.59 views

Researchers Uncover AWS SSM Agent Misuse as a Covert Remote Access Trojan

Cybersecurity researchers have discovered a new post-exploitation technique in Amazon Web Services AWS that allows the AWS Systems Manager Agent SSM Agent to be run as a remote access trojan on Windows and Linux environments "The SSM agent, a legitimate tool used by admins to manage their...

7.2AI score
Exploits0
Github Security Blog
Github Security Blog
added 2023/05/01 1:43 p.m.28 views

Remote file access vulnerability in `mlflow server` and `mlflow ui` CLIs

Impact Users of the MLflow Open Source Project who are hosting the MLflow Model Registry using the mlflow server or mlflow ui commands using an MLflow version older than MLflow 2.3.1 may be vulnerable to a remote file access exploit if they are not limiting who can query their server for example,...

9.8CVSS7.3AI score0.69468EPSS
Exploits2References2Affected Software1
Github Security Blog
Github Security Blog
added 2023/03/24 10:1 p.m.34 views

Remote file existence check vulnerability in `mlflow server` and `mlflow ui` CLIs

Impact Users of the MLflow Open Source Project who are hosting the MLflow Model Registry using the mlflow server or mlflow ui commands using an MLflow version older than MLflow 2.2.1 may be vulnerable to a remote file existence check exploit if they are not limiting who can query their server for...

5.3CVSS5.3AI score0.00578EPSS
Exploits1References6Affected Software1
Kitploit
Kitploit
added 2023/02/03 11:30 a.m.46 views

Aws-Security-Assessment-Solution - An AWS Tool To Help You Create A Point In Time Assessment Of Your AWS Account Using Prowler And Scout As Well As Optional AWS Developed Ransomware Checks

Self-Service Security Assessment too l Cybersecurity remains a very important topic and point of concern for many CIOs, CISOs, and their customers. To meet these important concerns, AWS has developed a primary set of services customers should use to aid in protecting their accounts. Amazon...

7.2AI score
Exploits0References11
Wiz blog
Wiz blog
added 2022/10/13 5:43 p.m.8 views

Lateral movement risks in the cloud and how to prevent them – Part 1: the network layer (VPC)

In this first blog post, we will introduce lateral movement as it pertains to the VPC. We will discuss attacker TTPs, and outline best practices for security practitioners and cloud builders to help secure their cloud environment and reduce risk...

6.9AI score
Exploits0
Rows per page
Query Builder