Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
photonPhotonPHSA-2023-3.0-0631
HistoryAug 11, 2023 - 12:00 a.m.

Critical Photon OS Security Update - PHSA-2023-3.0-0631

2023-08-1100:00:00
github.com
20
photon os
security update
kubernetes
calico
flannel
nxtgn-openssl
unix

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

Low

EPSS

0.004

Percentile

75.6%

JSON

Updates of [‘kubernetes-dns’, ‘flannel’, ‘nxtgn-openssl’, ‘kubernetes’, ‘calico’] packages of Photon OS have been released.

OSVersionArchitecturePackageVersionFilename
Photon3.0x86_64calico-cni< 3.26.1-1.ph3calico-cni-3.26.1-1.ph3.x86_64.rpm
Photon3.0x86_64calico< 3.26.1-1.ph3calico-3.26.1-1.ph3.x86_64.rpm
Photon3.0x86_64flannel< 0.22.0-1.ph3flannel-0.22.0-1.ph3.x86_64.rpm
Photon3.0x86_64calico-k8s-policy< 3.26.1-1.ph3calico-k8s-policy-3.26.1-1.ph3.x86_64.rpm
Photon3.0x86_64kubernetes-dns< 1.22.23-1.ph3kubernetes-dns-1.22.23-1.ph3.x86_64.rpm
Photon3.0x86_64nxtgn-openssl< 1.1.1o-7.ph3nxtgn-openssl-1.1.1o-7.ph3.x86_64.rpm
Photon3.0x86_64kubernetes< 1.27.3-1.ph3kubernetes-1.27.3-1.ph3.x86_64.rpm
Photon3.0x86_64kubernetes-dashboard< 2.7.0-1.ph3kubernetes-dashboard-2.7.0-1.ph3.x86_64.rpm
Photon3.0x86_64calico-felix< 3.26.1-1.ph3calico-felix-3.26.1-1.ph3.x86_64.rpm
Photon3.0x86_64kubernetes-pause< 1.27.3-1.ph3kubernetes-pause-1.27.3-1.ph3.x86_64.rpm
Rows per page:
1-10 of 141

Related

nessus 42
fedora 3
redhat 3
openvas 9
altlinux 3
photon 19
osv 25
ubuntu 2
ibm 7
rosalinux 1
oraclelinux 6
gitlab 5
veracode 8
cvelist 6
github 7
nvd 7
cbl_mariner 6
redhatcve 6
cgr 3
debiancve 6
prion 9
wolfi 3
cve 7
ubuntucve 6
nessus
nessus
Photon OS 3.0: Calico PHSA-2023-3.0-0631
2024-07-24 00:00:00
Photon OS 4.0: Flannel PHSA-2023-4.0-0427
2024-07-24 00:00:00
Photon OS 3.0: Flannel PHSA-2023-3.0-0631
2024-07-24 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: etcd-3.4.13-1.fc32
2021-01-04 01:18:15
[SECURITY] Fedora 29 Update: etcd-3.3.12-4.20190413gitf29b1ad.fc29
2019-05-06 04:15:25
[SECURITY] Fedora 30 Update: etcd-3.3.12-1.20190314gite1ca3b4.fc30
2019-04-13 00:09:57
redhat
redhat
(RHSA-2021:0916) Moderate: Red Hat OpenStack Platform 16.1.4 (etcd) security update
2021-03-17 13:32:51
(RHSA-2021:1407) Moderate: etcd security update
2021-04-27 16:05:53
(RHSA-2023:3441) Important: Red Hat OpenStack Platform 17.0 (etcd) security update
2023-06-05 13:50:17
openvas
openvas
Fedora: Security Advisory for etcd (FEDORA-2020-cd43b84c16)
2021-01-11 00:00:00
etcd < 3.3.23, 3.4.x < 3.4.10 Multiple Vulnerabilities
2020-08-10 00:00:00
Ubuntu: Security Advisory (USN-5628-2)
2023-01-27 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package etcd version 3.4.13-alt1
2020-09-05 00:00:00
Security fix for the ALT Linux 10 package etcd version 3.4.7-alt1
2020-04-26 00:00:00
Security fix for the ALT Linux 10 package etcd version 3.5.8-alt1
2023-04-17 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0427
2023-07-14 00:00:00
Critical Photon OS Security Update - PHSA-2020-0313
2020-08-18 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0313
2020-08-18 00:00:00
osv
osv
etcd vulnerabilities
2022-09-22 15:16:34
etcd vulnerabilities
2022-09-22 13:38:55
BIT-etcd-2020-15106
2024-03-06 10:52:40
ubuntu
ubuntu
etcd vulnerabilities
2022-09-22 00:00:00
etcd vulnerabilities
2022-09-22 00:00:00
ibm
ibm
Security Bulletin: IBM Cloud Private is vulnerable to etcd vulnerabilities (CVE-2020-15106, CVE-2020-15112, CVE-2020-15113)
2021-02-26 14:21:09
Security Bulletin: IBM API Connect is vulnerable to denial of service (DoS) via etcd (CVE-2020-15106 CVE-2020-15112 CVE-2020-15113)
2021-02-02 13:37:27
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 18:36:46
rosalinux
rosalinux
Advisory ROSA-SA-2024-2405
2024-04-23 12:01:14
oraclelinux
oraclelinux
kubernetes security update
2023-07-03 00:00:00
olcne security update
2023-07-03 00:00:00
kubernetes security update
2023-07-03 00:00:00
gitlab
gitlab
Improper Input Validation in etcd
2023-02-07 00:00:00
Missing Release of Resource after Effective Lifetime
2024-01-31 00:00:00
Missing Authentication for Critical Function
2024-01-31 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-08-06 06:19:36
Denial Of Service (DoS)
2021-03-18 06:52:12
Missing Authentication
2020-08-11 07:59:44
cvelist
cvelist
CVE-2020-15114 Denial of Service in etcd
2020-08-06 22:25:12
CVE-2022-28224 Calico and Calico Enterprise may be vulnerable to route hijacking with the floating IP feature
2022-06-06 17:19:12
CVE-2020-15136 Improper authentication in etcd
2020-08-06 22:45:14
github
github
Calico vulnerable to pod route hijacking
2022-06-07 00:00:33
Improper Preservation of Permissions in etcd
2024-01-30 23:54:26
Etcd Gateway TLS authentication only applies to endpoints detected in DNS SRV records
2024-01-31 00:21:56
nvd
nvd
CVE-2022-28224
2022-06-06 18:15:09
CVE-2020-15136
2020-08-06 23:15:11
CVE-2020-15113
2020-08-05 20:15:14
cbl_mariner
cbl_mariner
CVE-2020-15112 affecting package etcd for versions less than 3.5.0-3
2022-04-09 06:52:04
CVE-2020-15136 affecting package etcd for versions less than 3.5.0-3
2022-04-09 06:52:04
CVE-2020-15114 affecting package etcd for versions less than 3.5.0-3
2022-04-09 06:52:04
redhatcve
redhatcve
CVE-2020-15136
2020-08-14 06:43:32
CVE-2020-15112
2020-08-14 06:13:32
CVE-2020-15113
2020-08-14 06:13:31
cgr
cgr
CVE-2020-15136 vulnerabilities
2024-05-19 03:07:16
CVE-2020-15114 vulnerabilities
2024-05-19 03:07:16
CVE-2020-15106 vulnerabilities
2024-05-19 03:07:16
debiancve
debiancve
CVE-2020-15136
2020-08-06 23:15:11
CVE-2020-15114
2020-08-06 23:15:11
CVE-2020-15112
2020-08-05 20:15:14
prion
prion
Design/Logic Flaw
2020-08-06 23:15:00
Design/Logic Flaw
2020-08-05 20:15:00
Design/Logic Flaw
2020-08-06 23:15:00
wolfi
wolfi
CVE-2020-15136 vulnerabilities
2024-09-28 21:12:41
CVE-2020-15114 vulnerabilities
2024-09-28 21:12:41
CVE-2020-15106 vulnerabilities
2024-09-28 21:12:41
cve
cve
CVE-2020-15106
2020-08-05 19:15:10
CVE-2020-15136
2020-08-06 23:15:11
CVE-2020-15113
2020-08-05 20:15:14
ubuntucve
ubuntucve
CVE-2020-15114
2020-08-06 00:00:00
CVE-2020-15136
2020-08-06 00:00:00
CVE-2020-15113
2020-08-05 00:00:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

Low

EPSS

0.004

Percentile

75.6%

JSON
Related for PHSA-2023-3.0-0631
nessus42fedora3redhat3openvas9altlinux3photon19osv25ubuntu2ibm7rosalinux1oraclelinux6gitlab5veracode8cvelist6github7nvd7cbl_mariner6redhatcve6cgr3debiancve6prion9wolfi3cve7ubuntucve6