exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2019-11243

около 6 лет назад

In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig() method returns a copy of the provided config, with credentials removed (bearer token, username/password, and client certificate/key data). In the affected versions, rest.AnonymousClientConfig() did not effectively clear service account credentials loaded using rest.InClusterConfig()

CVSS3: 3.1

EPSS: Низкий

CVE-2019-11243

около 6 лет назад

In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig() method returns a copy of the provided config, with credentials removed (bearer token, username/password, and client certificate/key data). In the affected versions, rest.AnonymousClientConfig() did not effectively clear service account credentials loaded using rest.InClusterConfig()

CVSS3: 8.1

EPSS: Низкий

CVE-2019-11243

около 6 лет назад

In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientCon ...

CVSS3: 8.1

EPSS: Низкий

GHSA-gc2p-g4fg-29vh

около 3 лет назад

Kubernetes did not effectively clear service account credentials

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-11243 In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig() method returns a copy of the provided config, with credentials removed (bearer token, username/password, and client certificate/key data). In the affected versions, rest.AnonymousClientConfig() did not effectively clear service account credentials loaded using rest.InClusterConfig()	CVSS3: 3.1	0% Низкий	около 6 лет назад
CVE-2019-11243 In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig() method returns a copy of the provided config, with credentials removed (bearer token, username/password, and client certificate/key data). In the affected versions, rest.AnonymousClientConfig() did not effectively clear service account credentials loaded using rest.InClusterConfig()	CVSS3: 8.1	0% Низкий	около 6 лет назад
CVE-2019-11243 In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientCon ...	CVSS3: 8.1	0% Низкий	около 6 лет назад
GHSA-gc2p-g4fg-29vh Kubernetes did not effectively clear service account credentials	CVSS3: 8.1	0% Низкий	около 3 лет назад

Уязвимостей на страницу