Unauthorised Access

2019-08-0609:24:30

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.003 Low

EPSS

Percentile

68.7%

JSON

github.com/kubernetes/kubernetes is vulnerable to unauthorised access to the resources. API server allows a user with access privilege to the custom resources in one namespace to create, view update or delete the cluster-scoped resources.

CPENameOperatorVersion
github.com/kubernetes/kubernetesle1.12.11-beta.0
github.com/kubernetes/kubernetesle1.13.8
github.com/kubernetes/kubernetesle1.14.4
github.com/kubernetes/kubernetesle1.15.1
openshifteq3.0.2.0__0.git.33.f6b0f24.el7ose
openshifteq4.1.0__201905191700.git.0.cb455d6.el7
openshifteq3.0.2.0__0.git.38.7576bc5.el7ose
openshifteq3.0.1.0__1.git.527.f8d5fed.el7ose
openshifteq4.1.4__201906261555.git.0.c9e4f28.el8
openshifteq3.0.1.0__1.git.529.dcab62c.el7ose

Name	Operator	Version
github.com/kubernetes/kubernetes	le	1.12.11-beta.0
github.com/kubernetes/kubernetes	le	1.13.8
github.com/kubernetes/kubernetes	le	1.14.4
github.com/kubernetes/kubernetes	le	1.15.1
openshift	eq	3.0.2.0__0.git.33.f6b0f24.el7ose
openshift	eq	4.1.0__201905191700.git.0.cb455d6.el7
openshift	eq	3.0.2.0__0.git.38.7576bc5.el7ose
openshift	eq	3.0.1.0__1.git.527.f8d5fed.el7ose
openshift	eq	4.1.4__201906261555.git.0.c9e4f28.el8
openshift	eq	3.0.1.0__1.git.529.dcab62c.el7ose