Lucene search

K

Veracode Vulnerability DatabaseVERACODE:4142

HistoryMay 03, 2017 - 7:54 a.m.

Arbitrary Log Read

2017-05-0307:54:35

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7

EPSS

0.005

Percentile

76.4%

github.com/kubernetes/kubernetes is vulnerable to arbitrary log reads. Using a container name, attackers are able to read the pod logs.

References

rhn.redhat.com/errata/RHSA-2015-2615.html

access.redhat.com/errata/RHSA-2015:2544

access.redhat.com/errata/RHSA-2015:2615

access.redhat.com/security/cve/CVE-2015-7528

bugzilla.redhat.com/show_bug.cgi?id=1286745

github.com/kubernetes/kubernetes/commit/afd56495a1052a3387b81df1786a8d0f51bc8671

github.com/kubernetes/kubernetes/pull/17886

github.com/kubernetes/kubernetes/releases/tag/v1.2.0-alpha.5

github.com/openshift/origin/pull/6113

EPSS

0.005

Percentile

76.4%

Related for VERACODE:4142

redhat2 cvelist1 cve1 nvd1 nessus1 prion1 osv2 veracode1 github1 debiancve1