Kubernetes 1.24.17

CPE Details

Kubernetes 1.24.17
kubernetes
kubernetes
1.24.17
2023-12-08
17h02 +00:00
2023-12-08
17h02 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:kubernetes:kubernetes:1.24.17:*:*:*:*:*:*:*

Informations

Vendor

kubernetes

Product

kubernetes

Version

1.24.17

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-5528 2023-11-14 20h32 +00:00 A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
8.8
Haute
CVE-2020-8554 2021-01-21 17h09 +00:00 Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec.externalIPs field, to intercept traffic to that IP address. Additionally, an attacker who is able to patch the status (which is considered a privileged operation and should not typically be granted to users) of a LoadBalancer service can set the status.loadBalancer.ingress.ip to similar effect.
6.3
Moyen