Lucene search
GoogleOSV:GHSA-H828-V5PV-33QXHistoryMar 03, 2023 - 6:30 p.m.
coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints
2023-03-0318:30:27
Google
osv.dev
13
coredns
vulnerability
communication channel
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
32.1%
A flaw was found in coreDNS. This flaw allows a malicious user to redirect traffic intended for external top-level domains (TLD) to a pod they control by creating projects and namespaces that match the TLD.
Related
osv
osv
CGA-q3h5-h64q-p5xg
2024-06-06 12:28:55
CGA-gprw-crxv-m54h
2024-06-06 12:25:59
CGA-qmrc-6qmj-8wfg
2024-06-06 12:26:19
github
github
cve
cve
CVE-2022-2837
2023-03-03 16:15:09
redhatcve
redhatcve
CVE-2022-2837
2022-08-16 09:08:12
prion
prion
Design/Logic Flaw
2023-03-03 16:15:00
cgr
cgr
CVE-2022-2837 vulnerabilities
2024-05-19 03:07:16
cvelist
cvelist
CVE-2022-2837
2023-03-03 00:00:00
nvd
nvd
CVE-2022-2837
2023-03-03 16:15:09
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
32.1%
Related for OSV:GHSA-H828-V5PV-33QX