Количество 2
Количество 2
CVE-2024-42480
Kamaji is the Hosted Control Plane Manager for Kubernetes. In versions 1.0.0 and earlier, Kamaji uses an "open at the top" range definition in RBAC for etcd roles leading to some TCPs API servers being able to read, write, and delete the data of other control planes. This vulnerability is fixed in edge-24.8.2.
GHSA-6r4j-4rjc-8vw5
RBAC Roles for `etcd` created by Kamaji are not disjunct
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-42480 Kamaji is the Hosted Control Plane Manager for Kubernetes. In versions 1.0.0 and earlier, Kamaji uses an "open at the top" range definition in RBAC for etcd roles leading to some TCPs API servers being able to read, write, and delete the data of other control planes. This vulnerability is fixed in edge-24.8.2. | CVSS3: 8.1 | 0% Низкий | больше 1 года назад |
| GHSA-6r4j-4rjc-8vw5 RBAC Roles for `etcd` created by Kamaji are not disjunct | CVSS3: 8.1 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу