Описание
A security issue was discovered in Kubernetes where actors that control the responses of MutatingWebhookConfiguration or ValidatingWebhookConfiguration requests are able to redirect kube-apiserver requests to private networks of the apiserver. If that user can view kube-apiserver logs when the log level is set to 10, they can view the redirected responses and headers in the logs.
Ссылки
- MitigationThird Party Advisory
- Mailing ListMitigation
- Third Party Advisory
- MitigationThird Party Advisory
- Mailing ListMitigation
- Third Party Advisory
Уязвимые конфигурации
Одно из
EPSS
4.1 Medium
CVSS3
4 Medium
CVSS2
Дефекты
Связанные уязвимости
A security issue was discovered in Kubernetes where actors that control the responses of MutatingWebhookConfiguration or ValidatingWebhookConfiguration requests are able to redirect kube-apiserver requests to private networks of the apiserver. If that user can view kube-apiserver logs when the log level is set to 10, they can view the redirected responses and headers in the logs.
A security issue was discovered in Kubernetes where actors that control the responses of MutatingWebhookConfiguration or ValidatingWebhookConfiguration requests are able to redirect kube-apiserver requests to private networks of the apiserver. If that user can view kube-apiserver logs when the log level is set to 10, they can view the redirected responses and headers in the logs.
A security issue was discovered in Kubernetes where actors that contro ...
EPSS
4.1 Medium
CVSS3
4 Medium
CVSS2