Kubernetes — открытое программное обеспечение для оркестровки контейнеризированных приложений — автоматизации их развёртывания, масштабирования и координации в условиях кластера.
Релизный цикл, информация об уязвимостях
График релизов
Количество 320
CVE-2017-1000056
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.
CVE-2017-1000056
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation ...
CVE-2017-1000056
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.
CVE-2017-1002100
Default access permissions for Persistent Volumes (PVs) created by the Kubernetes Azure cloud provider in versions 1.6.0 to 1.6.5 are set to "container" which exposes a URI that can be accessed without authentication on the public internet. Access to the URI string requires privileged access to the Kubernetes cluster or authenticated access to the Azure portal.
BDU:2017-01812
Уязвимость плагина, предназначенного для входа в PodSecurityPolicy, программного средства управления кластерами виртуальных машин Kubernetes, позволяющая нарушителю повысить свои привилегии
CVE-2017-1000056
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.
CVE-2016-7075
It was found that Kubernetes as used by Openshift Enterprise 3 did not correctly validate X.509 client intermediate certificate host name fields. An attacker could use this flaw to bypass authentication requirements by using a specially crafted X.509 certificate.
BDU:2016-01027
Уязвимость программного средства управления кластерами виртуальных машин Kubernetes и облачной платформы OpenShift, позволяющая нарушителю читать произвольные журналы
CVE-2015-7528
Kubernetes before 1.2.0-alpha.5 allows remote attackers to read arbitrary pod logs via a container name.
CVE-2015-7528
Kubernetes before 1.2.0-alpha.5 allows remote attackers to read arbitr ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2017-1000056 Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object. | CVSS3: 9.8 | 0% Низкий | около 8 лет назад |
| CVE-2017-1000056 Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation ... | CVSS3: 9.8 | 0% Низкий | около 8 лет назад |
 | CVE-2017-1000056 Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object. | CVSS3: 9.8 | 0% Низкий | около 8 лет назад |
 | CVE-2017-1002100 Default access permissions for Persistent Volumes (PVs) created by the Kubernetes Azure cloud provider in versions 1.6.0 to 1.6.5 are set to "container" which exposes a URI that can be accessed without authentication on the public internet. Access to the URI string requires privileged access to the Kubernetes cluster or authenticated access to the Azure portal. | CVSS3: 6.5 | 0% Низкий | около 8 лет назад |
 | BDU:2017-01812 Уязвимость плагина, предназначенного для входа в PodSecurityPolicy, программного средства управления кластерами виртуальных машин Kubernetes, позволяющая нарушителю повысить свои привилегии | CVSS2: 7.5 | 0% Низкий | больше 8 лет назад |
| CVE-2017-1000056 Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object. | CVSS3: 7.5 | 0% Низкий | больше 8 лет назад |
| CVE-2016-7075 It was found that Kubernetes as used by Openshift Enterprise 3 did not correctly validate X.509 client intermediate certificate host name fields. An attacker could use this flaw to bypass authentication requirements by using a specially crafted X.509 certificate. | CVSS3: 7.5 | 0% Низкий | почти 9 лет назад |
| BDU:2016-01027 Уязвимость программного средства управления кластерами виртуальных машин Kubernetes и облачной платформы OpenShift, позволяющая нарушителю читать произвольные журналы | CVSS2: 5 | 0% Низкий | больше 9 лет назад |
| CVE-2015-7528 Kubernetes before 1.2.0-alpha.5 allows remote attackers to read arbitrary pod logs via a container name. | CVSS3: 5.3 | 0% Низкий | больше 9 лет назад |
| CVE-2015-7528 Kubernetes before 1.2.0-alpha.5 allows remote attackers to read arbitr ... | CVSS3: 5.3 | 0% Низкий | больше 9 лет назад |
Уязвимостей на страницу