Количество 12
Количество 12
CVE-2022-3162
Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions sharing the same API group 2. Users have cluster-wide list or watch authorization on one of those custom resources. 3. The same users are not authorized to read another custom resource in the same API group.
CVE-2022-3162
Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions sharing the same API group 2. Users have cluster-wide list or watch authorization on one of those custom resources. 3. The same users are not authorized to read another custom resource in the same API group.
CVE-2022-3162
Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions sharing the same API group 2. Users have cluster-wide list or watch authorization on one of those custom resources. 3. The same users are not authorized to read another custom resource in the same API group.
CVE-2022-3162
CVE-2022-3162
Users authorized to list or watch one type of namespaced custom resour ...
GHSA-2394-5535-8j88
Kubernetes vulnerable to path traversal
BDU:2022-06757
Уязвимость программного средства управления кластерами виртуальных машин Kubernetes, связанная с недостатками контроля доступа, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
ELSA-2022-10036
ELSA-2022-10036: kubernetes security update (IMPORTANT)
ELSA-2022-10035
ELSA-2022-10035: kubernetes security update (IMPORTANT)
ELSA-2022-10034
ELSA-2022-10034: kubernetes security update (IMPORTANT)
ELSA-2022-10033
ELSA-2022-10033: kubernetes security update (IMPORTANT)
SUSE-SU-2023:2292-1
Security update for kubernetes1.23
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-3162 Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions sharing the same API group 2. Users have cluster-wide list or watch authorization on one of those custom resources. 3. The same users are not authorized to read another custom resource in the same API group. | CVSS3: 6.5 | 1% Низкий | больше 2 лет назад |
 | CVE-2022-3162 Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions sharing the same API group 2. Users have cluster-wide list or watch authorization on one of those custom resources. 3. The same users are not authorized to read another custom resource in the same API group. | CVSS3: 6.5 | 1% Низкий | больше 2 лет назад |
 | CVE-2022-3162 Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions sharing the same API group 2. Users have cluster-wide list or watch authorization on one of those custom resources. 3. The same users are not authorized to read another custom resource in the same API group. | CVSS3: 6.5 | 1% Низкий | больше 2 лет назад |
 | CVSS3: 6.5 | 1% Низкий | 4 месяца назад | |
| CVE-2022-3162 Users authorized to list or watch one type of namespaced custom resour ... | CVSS3: 6.5 | 1% Низкий | больше 2 лет назад |
| GHSA-2394-5535-8j88 Kubernetes vulnerable to path traversal | CVSS3: 6.5 | 1% Низкий | больше 2 лет назад |
 | BDU:2022-06757 Уязвимость программного средства управления кластерами виртуальных машин Kubernetes, связанная с недостатками контроля доступа, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 6.5 | 1% Низкий | больше 2 лет назад |
| ELSA-2022-10036 ELSA-2022-10036: kubernetes security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2022-10035 ELSA-2022-10035: kubernetes security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2022-10034 ELSA-2022-10034: kubernetes security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2022-10033 ELSA-2022-10033: kubernetes security update (IMPORTANT) | больше 2 лет назад | ||
 | SUSE-SU-2023:2292-1 Security update for kubernetes1.23 | около 2 лет назад |
Уязвимостей на страницу