Lucene search
KubernetesCVE-2023-3676HistoryOct 31, 2023 - 9:15 p.m.
CVE-2023-3676
2023-10-3121:15:08
CWE-20
kubernetes
web.nvd.nist.gov
721
20
cve-2023-3676
kubernetes
security issue
windows nodes
admin privileges
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
28.4%
A security issue was discovered in Kubernetes where a user
that can create pods on Windows nodes may be able to escalate to admin
privileges on those nodes. Kubernetes clusters are only affected if they
include Windows nodes.
Affected configurations
Node
microsoftwindowsMatch-
kuberneteskubernetesRange<1.24.17
ORkuberneteskubernetesRange1.25.0–1.25.13
ORkuberneteskubernetesRange1.26.0–1.26.8
ORkuberneteskubernetesRange1.27.0–1.27.5
ORkuberneteskubernetesRange1.28.0–1.28.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
| kubernetes | kubernetes | * | cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "kubelet",
"repo": "https://github.com/kubernetes/kubernetes",
"vendor": "Kubernetes",
"versions": [
{
"status": "affected",
"version": "v1.28.0"
},
{
"lessThanOrEqual": "v1.27.4",
"status": "affected",
"version": "v1.27.0",
"versionType": "semver"
},
{
"lessThanOrEqual": "v1.26.7",
"status": "affected",
"version": "v1.26.0",
"versionType": "semver"
},
{
"lessThanOrEqual": "v1.25.12",
"status": "affected",
"version": "v1.25.0",
"versionType": "semver"
},
{
"status": "unaffected",
"version": "v1.28.1"
},
{
"status": "unaffected",
"version": "v1.27.5"
},
{
"status": "unaffected",
"version": "v1.26.8"
},
{
"status": "unaffected",
"version": "v1.25.13"
},
{
"status": "unaffected",
"version": "v1.24.17"
},
{
"lessThanOrEqual": "v1.24.16",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]References
Social References
More
Related
debiancve
debiancve
CVE-2023-3676
2023-10-31 21:15:08
veracode
veracode
Privilege Escalation
2023-11-01 05:52:49
osv
osv
CGA-8rfx-25hc-vmq4
2024-06-06 12:25:42
CGA-5j39-5qpc-xh5q
2024-06-06 12:22:52
CGA-q9q4-ccqr-hcrh
2024-06-06 12:29:01
cgr
cgr
CVE-2023-3676 vulnerabilities
2024-05-19 03:07:16
github
github
Kubernetes privilege escalation vulnerability
2023-10-31 21:32:35
prion
prion
Security feature bypass
2023-10-31 21:15:00
redhatcve
redhatcve
CVE-2023-3676
2023-08-23 13:49:53
nvd
nvd
CVE-2023-3676
2023-10-31 21:15:08
cvelist
cvelist
redhat
redhat
openvas
openvas
Fedora: Security Advisory for kubernetes (FEDORA-2023-a3fcc0751f)
2023-09-03 00:00:00
Fedora: Security Advisory (FEDORA-2023-8f8ddb2428)
2023-09-16 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: kubernetes-1.27.5-1.fc39
2023-09-15 19:02:03
[SECURITY] Fedora 38 Update: kubernetes-1.26.8-1.fc38
2023-09-02 01:16:23
nessus
nessus
Fedora 39 : kubernetes (2023-8f8ddb2428)
2023-11-07 00:00:00
Fedora 38 : kubernetes (2023-a3fcc0751f)
2023-09-02 00:00:00
thn
thn
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
28.4%
Related for CVE-2023-3676