SUSE CVE-2019-11253

🗓️ 15 Feb 2023 04:12:43Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 2 Views

CVE-2019-11253: Kubernetes API server DoS from malformed payloads; older releases affected; anonymous access before 1.14.0.

Reporter	Title	Published	Views	Family All 114
IBM Security Bulletins	Security Bulletin: IBM Cloud Kubernetes Service is affected by a Kubernetes API server security vulnerability (CVE-2019-11253)	25 Oct 201916:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud Pak for Data	28 Mar 202517:38	–	ibm
IBM Security Bulletins	Security Bulletin: IBM CICS TX Standard is vulnerable to multiple vulnerabilities in Golang Go and Kubernetes.	14 Feb 202321:14	–	ibm
IBM Security Bulletins	Security Bulletin: IBM CICS TX Advanced is vulnerable to multiple vulnerabilities in Golang Go and Kubernetes.	14 Feb 202321:04	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	8 Jun 202321:56	–	ibm
IBM Security Bulletins	Security Bulletin: Open Source Security issues for AWS storage layer in NPS.	10 Dec 202011:16	–	ibm
IBM Security Bulletins	Security Bulletin: Security Vulnerabilities affect IBM Cloud Private for Data V2.1.0 NGINX (CVE-2019-12206, CVE-2019-12207, CVE-2019-12208, CVE-2019-20372), Docker (CVE-2019-17149, CVE-2019-17150), Kubernetes (CVE-2019-11245, CVE-2019-11253, CVE-2019-1022	6 Mar 202020:58	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in Kubernetes shipped with PowerAI Vision	8 Jan 202016:47	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Kubernetes affects IBM Watson Studio Local	20 Dec 201913:53	–	ibm
IBM Security Bulletins	Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by Kubernetes API server security vulnerability (CVE-2019-11253)	6 Dec 201917:49	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
OpenSUSE Tumbleweed	–	any	govulncheck-vulndb	0.0.20250807T150727-1.1	govulncheck-vulndb-0.0.20250807T150727-1.1.noarch.rpm
SUSE Linux Enterprise Server	16.0	any	govulncheck-vulndb	0.0.20250814T182633-160000.1.2	govulncheck-vulndb-0.0.20250814T182633-160000.1.2.noarch.rpm
OpenSUSE Tumbleweed	–	any	kubernetes-apiserver	1.22.2-21.2	kubernetes-apiserver-1.22.2-21.2.noarch.rpm
OpenSUSE Tumbleweed	–	any	kubernetes-apiserver-minus1	1.21.5-21.2	kubernetes-apiserver-minus1-1.21.5-21.2.noarch.rpm
OpenSUSE Tumbleweed	–	any	kubernetes-client	1.22.2-21.2	kubernetes-client-1.22.2-21.2.noarch.rpm
OpenSUSE Tumbleweed	–	any	kubernetes-controller-manager	1.22.2-21.2	kubernetes-controller-manager-1.22.2-21.2.noarch.rpm
OpenSUSE Tumbleweed	–	any	kubernetes-controller-manager-minus1	1.21.5-21.2	kubernetes-controller-manager-minus1-1.21.5-21.2.noarch.rpm
OpenSUSE Tumbleweed	–	any	kubernetes-coredns	1.8.4-21.2	kubernetes-coredns-1.8.4-21.2.noarch.rpm
OpenSUSE Tumbleweed	–	any	kubernetes-coredns-minus1	1.8.0-21.2	kubernetes-coredns-minus1-1.8.0-21.2.noarch.rpm
OpenSUSE Tumbleweed	–	any	kubernetes-etcd	3.5.0-21.2	kubernetes-etcd-3.5.0-21.2.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2019-11253
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1152861
suse	www.suse.com/support/kb/doc/
suse	www.suse.com/support/kb/doc/

13 Mar 2026 15:25Current

6.8Medium risk

Vulners AI Score6.8

CVSS 36.5

EPSS0.82787

kubernetes api server malformed payloads denial of service older releases anonymous access role based access