Lucene search
Copyright (C) 2023 Greenbone AGOPENVAS:1361412562310884725HistorySep 03, 2023 - 12:00 a.m.
Fedora: Security Advisory for kubernetes (FEDORA-2023-a3fcc0751f)
2023-09-0300:00:00
Copyright (C) 2023 Greenbone AG
plugins.openvas.org
9
fedora
security advisory
kubernetes
fedora-2023-a3fcc0751f
update
package
container cluster management
vendorfix
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.001
Percentile
33.8%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.884725");
script_version("2023-11-10T16:09:31+0000");
script_cve_id("CVE-2023-3955", "CVE-2023-3676");
script_tag(name:"cvss_base", value:"9.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2023-11-10 16:09:31 +0000 (Fri, 10 Nov 2023)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-11-08 18:29:00 +0000 (Wed, 08 Nov 2023)");
script_tag(name:"creation_date", value:"2023-09-03 01:16:40 +0000 (Sun, 03 Sep 2023)");
script_name("Fedora: Security Advisory for kubernetes (FEDORA-2023-a3fcc0751f)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2023 Greenbone AG");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC38");
script_xref(name:"Advisory-ID", value:"FEDORA-2023-a3fcc0751f");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/INVUL5XV6JXEFFXL2U3JDAIH52V3LWER");
script_tag(name:"summary", value:"The remote host is missing an update for the 'kubernetes'
package(s) announced via the FEDORA-2023-a3fcc0751f advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Container cluster management");
script_tag(name:"affected", value:"'kubernetes' package(s) on Fedora 38.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "FC38") {
if(!isnull(res = isrpmvuln(pkg:"kubernetes", rpm:"kubernetes~1.26.8~1.fc38", rls:"FC38"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);Related
fedora
fedora
[SECURITY] Fedora 39 Update: kubernetes-1.27.5-1.fc39
2023-09-15 19:02:03
[SECURITY] Fedora 38 Update: kubernetes-1.26.8-1.fc38
2023-09-02 01:16:23
nessus
nessus
Fedora 39 : kubernetes (2023-8f8ddb2428)
2023-11-07 00:00:00
Fedora 38 : kubernetes (2023-a3fcc0751f)
2023-09-02 00:00:00
openvas
openvas
Fedora: Security Advisory (FEDORA-2023-8f8ddb2428)
2023-09-16 00:00:00
redhat
redhat
thn
thn
debiancve
debiancve
CVE-2023-3676
2023-10-31 21:15:08
CVE-2023-3955
2023-10-31 21:15:08
veracode
veracode
Privilege Escalation
2023-11-01 05:52:49
Privilege Escalation
2023-11-01 10:01:52
osv
osv
CGA-8rfx-25hc-vmq4
2024-06-06 12:25:42
CGA-5j39-5qpc-xh5q
2024-06-06 12:22:52
CGA-q9q4-ccqr-hcrh
2024-06-06 12:29:01
prion
prion
Security feature bypass
2023-10-31 21:15:00
Security feature bypass
2023-10-31 21:15:00
cvelist
cvelist
cve
cve
CVE-2023-3676
2023-10-31 21:15:08
CVE-2023-3955
2023-10-31 21:15:08
redhatcve
redhatcve
CVE-2023-3676
2023-08-23 13:49:53
CVE-2023-3955
2023-08-23 13:49:53
nvd
nvd
CVE-2023-3676
2023-10-31 21:15:08
CVE-2023-3955
2023-10-31 21:15:08
cgr
cgr
CVE-2023-3676 vulnerabilities
2024-05-19 03:07:16
CVE-2023-3955 vulnerabilities
2024-05-19 03:07:16
github
github
Kubernetes privilege escalation vulnerability
2023-10-31 21:32:35
Kubernetes privilege escalation vulnerability
2023-10-31 21:32:35
wolfi
wolfi
CVE-2023-3955 vulnerabilities
2024-09-19 21:18:36
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.001
Percentile
33.8%
Related for OPENVAS:1361412562310884725