Количество 18
Количество 18
GHSA-cgcv-5272-97pr
Kubernetes mountable secrets policy bypass
CVE-2023-2728
Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.
CVE-2023-2728
Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.
CVE-2023-2728
Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.
CVE-2023-2728
Users may be able to launch containers that bypass the mountable secre ...
SUSE-SU-2023:3260-1
Security update for kubernetes1.24
SUSE-SU-2023:2544-1
Security update for kubernetes1.24
SUSE-SU-2023:2543-1
Security update for kubernetes1.23
SUSE-SU-2023:2542-1
Security update for kubernetes1.23
SUSE-SU-2023:2541-1
Security update for kubernetes1.18
ELSA-2023-25546
ELSA-2023-25546: olcne security update (IMPORTANT)
ELSA-2023-25545
ELSA-2023-25545: olcne security update (IMPORTANT)
ELSA-2023-12564
ELSA-2023-12564: kubernetes security update (IMPORTANT)
ELSA-2023-12563
ELSA-2023-12563: kubernetes security update (IMPORTANT)
ELSA-2023-12562
ELSA-2023-12562: kubernetes security update (IMPORTANT)
ELSA-2023-12561
ELSA-2023-12561: kubernetes security update (IMPORTANT)
SUSE-SU-2024:3343-1
Security update for kubernetes1.24
SUSE-SU-2024:3341-1
Security update for kubernetes1.23
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-cgcv-5272-97pr Kubernetes mountable secrets policy bypass | CVSS3: 6.5 | 4% Низкий | больше 2 лет назад |
 | CVE-2023-2728 Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers. | CVSS3: 6.5 | 4% Низкий | больше 2 лет назад |
 | CVE-2023-2728 Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers. | CVSS3: 6.5 | 4% Низкий | больше 2 лет назад |
 | CVE-2023-2728 Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers. | CVSS3: 6.5 | 4% Низкий | больше 2 лет назад |
| CVE-2023-2728 Users may be able to launch containers that bypass the mountable secre ... | CVSS3: 6.5 | 4% Низкий | больше 2 лет назад |
 | SUSE-SU-2023:3260-1 Security update for kubernetes1.24 | около 2 лет назад | ||
| SUSE-SU-2023:2544-1 Security update for kubernetes1.24 | больше 2 лет назад | ||
| SUSE-SU-2023:2543-1 Security update for kubernetes1.23 | больше 2 лет назад | ||
| SUSE-SU-2023:2542-1 Security update for kubernetes1.23 | больше 2 лет назад | ||
| SUSE-SU-2023:2541-1 Security update for kubernetes1.18 | больше 2 лет назад | ||
| ELSA-2023-25546 ELSA-2023-25546: olcne security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-25545 ELSA-2023-25545: olcne security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-12564 ELSA-2023-12564: kubernetes security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-12563 ELSA-2023-12563: kubernetes security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-12562 ELSA-2023-12562: kubernetes security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-12561 ELSA-2023-12561: kubernetes security update (IMPORTANT) | больше 2 лет назад | ||
| SUSE-SU-2024:3343-1 Security update for kubernetes1.24 | около 1 года назад | ||
| SUSE-SU-2024:3341-1 Security update for kubernetes1.23 | около 1 года назад |
Уязвимостей на страницу