CVE-2023-5056 in Skupper Operatorinformation

Résumé

par MITRE • 18/12/2023

A flaw was found in the Skupper operator, which may permit a certain configuration to create a service account that would allow an authenticated attacker in the adjacent cluster to view deployments in all namespaces in the cluster. This issue permits unauthorized viewing of information outside of the user's purview.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Réserver

18/09/2023

Divulgation

18/12/2023

Modérer

accepté

Entrée

VDB-243639

CPE

prêt

EPSS

0.00273

KEV

non

Activités

très faible

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!