| Max CVSS | 5.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-10150 | 4.3 |
It was found that OpenShift Container Platform versions 3.6.x - 4.6.0 does not perform SSH Host Key checking when using ssh key authentication during builds. An attacker, with the ability to redirect network traffic, could use this to alter the resul
|
12-02-2023 - 23:33 | 12-06-2019 - 14:29 | |
| CVE-2019-11253 | 5.0 |
Improper input validation in the Kubernetes API server in versions v1.0-1.12 and versions prior to v1.13.12, v1.14.8, v1.15.5, and v1.16.2 allows authorized users to send malicious YAML or JSON payloads, causing the API server to consume excessive CP
|
02-10-2020 - 17:11 | 17-10-2019 - 16:15 | |
| CVE-2019-11249 | 5.8 |
The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar inside the container to create a tar archive, copies it over the network, and kubectl unpacks it on the user’s ma
|
02-10-2020 - 16:45 | 29-08-2019 - 01:15 | |
| CVE-2019-11251 | 4.3 |
The Kubernetes kubectl cp command in versions 1.1-1.12, and versions prior to 1.13.11, 1.14.7, and 1.15.4 allows a combination of two symlinks provided by tar output of a malicious container to place a file outside of the destination directory specif
|
06-02-2020 - 17:37 | 03-02-2020 - 16:15 |