Описание
A flaw was found in coreDNS. This flaw allows a malicious user to reroute internal calls to some internal services that were accessed by the FQDN in a format of <service>.<namespace>.svc.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| coredns | itp | package |
EPSS
Процентиль: 10%
0.00036
Низкий
Связанные уязвимости
CVSS3: 4.4
redhat
больше 3 лет назад
A flaw was found in coreDNS. This flaw allows a malicious user to reroute internal calls to some internal services that were accessed by the FQDN in a format of <service>.<namespace>.svc.
CVSS3: 4.4
nvd
почти 3 года назад
A flaw was found in coreDNS. This flaw allows a malicious user to reroute internal calls to some internal services that were accessed by the FQDN in a format of <service>.<namespace>.svc.
CVSS3: 4.4
github
почти 3 года назад
coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints
EPSS
Процентиль: 10%
0.00036
Низкий