Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-3955

Опубликовано: 31 окт. 2023
Источник: debian
EPSS Низкий

Описание

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
kubernetesfixed1.20.5+really1.20.2-1package

Примечания

  • Server components no longer built since 1.20.5+really1.20.2-1, marking that as fixed version

  • The source package itself it still vulnerable, but custom rebuilds are not really a usecase here

EPSS

Процентиль: 68%
0.00579
Низкий

Связанные уязвимости

redhat логотип

CVE-2023-3955

CVSS3: 8.8
redhat
почти 2 года назад

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.

nvd логотип

CVE-2023-3955

CVSS3: 8.8
nvd
больше 1 года назад

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.

github логотип

GHSA-q78c-gwqw-jcmc

CVSS3: 8.8
github
больше 1 года назад

Kubernetes privilege escalation vulnerability

fstec логотип

BDU:2023-04983

CVSS3: 8.8
fstec
почти 2 года назад

Уязвимость модуля pod программного средства управления кластерами виртуальных машин Kubernetes, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 68%
0.00579
Низкий