Lucene search
RedhatCVELIST:CVE-2021-4178HistoryAug 24, 2022 - 3:02 p.m.
CVE-2021-4178
2022-08-2415:02:11
CWE-502
redhat
www.cve.org
arbitrary code execution
fabric 8
kubernetes
yaml parsing
cve-2021-4178
A arbitrary code execution flaw was found in the Fabric 8 Kubernetes client affecting versions 5.0.0-beta-1 and above. Due to an improperly configured YAML parsing, this will allow a local and privileged attacker to supply malicious YAML.
CNA Affected
[
{
"product": "kubernetes-client",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Affects 5.x versions, Fixed in kubernetes-client v5.0.3 and above."
}
]
}
]Related
osv
osv
fabric8 kubernetes-client vulnerable
2022-07-15 05:17:35
CVE-2021-4178
2022-08-24 16:15:09
github
github
fabric8 kubernetes-client vulnerable
2022-07-15 05:17:35
nvd
nvd
CVE-2021-4178
2022-08-24 16:15:09
prion
prion
Code injection
2022-08-24 16:15:00
cve
cve
CVE-2021-4178
2022-08-24 16:15:09
ibm
ibm
redhatcve
redhatcve
CVE-2021-4178
2022-01-06 17:52:03
veracode
veracode
Arbitrary Code Execution
2022-07-18 07:12:10
nessus
nessus
redhat
redhat
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00