CVE-2023-3978 vulnerabilities

2024-06-2909:08:33

packages.wolfi.dev

cve-2023-3978

vulnerabilities

kubernetes

packages

unix

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.8%

JSON

Vulnerabilities for packages: bom, gitlab-pages, prometheus-operator, yq, runc, hey, vertical-pod-autoscaler, bank-vaults, hugo, kubewatch, gke-gcloud-auth-plugin, chartmuseum, wireguard-go, nri-prometheus, stakater-reloader, cluster-autoscaler, dynamic-localpv-provisioner, apko, prometheus-mysqld-exporter, kubernetes-csi-external-attacher, pulumi, secrets-store-csi-driver, sigstore-scaffolding, prometheus-statsd-exporter, gitlab-runner, nfs-subdir-external-provisioner, flux-image-reflector-controller, kubernetes-dashboard-metrics-scraper, prometheus-pushgateway, opentofu, kubernetes-csi-livenessprobe, kyverno, haproxy-ingress, tkn, kubernetes-csi-external-provisioner, aactl, aws-load-balancer-controller, gobuster, thanos-operator, containerd, rqlite, kaf, secrets-store-csi-driver-provider-gcp, kubernetes-csi-external-snapshotter, karpenter, metacontroller, flux-helm-controller, trust-manager, consul, dgraph, weaviate, vault, k8sgpt-operator, prometheus-adapter, git-lfs, kubernetes-csi-external-resizer, vault-csi-provider, external-secrets-operator, coredns, kots, tctl, prometheus-elasticsearch-exporter, argo-cd, newrelic-infrastructure-agent, vault-k8s, aws-efs-csi-driver, kube-logging-operator, flux-notification-controller, oauth2-proxy, mc, terraform, fuse-overlayfs-snapshotter, prometheus-blackbox-exporter, trillian, flux-kustomize-controller, nvidia-device-plugin, minio, external-dns, dive, pulumi-language-dotnet, memcached-exporter, crossplane-provider-aws, gomplate, prometheus-bind-exporter, prometheus-stackdriver-exporter, kube-fluentd-operator, kube-state-metrics, prometheus-alertmanager, metrics-server, flux-image-automation-controller, gitness, frp, prometheus, node-problem-detector, pulumi-language-java, spark-operator, cosign, goreleaser, buildkitd, src, zot, k3d, kpt, aws-ebs-csi-driver, kubernetes-dashboard, keda, influxd, k3s, falcoctl, telegraf, prometheus-node-exporter, k8sgpt, gatekeeper, crossplane-provider-azure, pulumi-language-yaml, kubeflow-katib, helm, flux-source-controller, dex, kubernetes-csi-node-driver-registrar, pulumi-kubernetes-operator, kubevela, thanos, skaffold, flux, timoni, nodetaint, cue, prometheus-postgres-exporter, grpcurl, ollama, cloud-sql-proxy, prometheus-mongodb-exporter

OSVersionArchitecturePackageVersionFilename
Wolfiunknownx86_64aactl<= 0.4.12-r7aactl-0.4.12-r7.apk
Wolfiunknownaarch64aactl<= 0.4.12-r7aactl-0.4.12-r7.apk
Wolfiunknownx86_64apko<= 0.10.0-r6apko-0.10.0-r6.apk
Wolfiunknownaarch64apko<= 0.10.0-r6apko-0.10.0-r6.apk
Wolfiunknownx86_64argo-cd<= 2.7.14-r5argo-cd-2.7.14-r5.apk
Wolfiunknownaarch64argo-cd<= 2.7.14-r5argo-cd-2.7.14-r5.apk
Wolfiunknownx86_64argo-cd<= 2.8.4-r4argo-cd-2.8.4-r4.apk
Wolfiunknownaarch64argo-cd<= 2.8.4-r4argo-cd-2.8.4-r4.apk
Wolfiunknownx86_64aws-ebs-csi-driver<= 1.23.1-r4aws-ebs-csi-driver-1.23.1-r4.apk
Wolfiunknownaarch64aws-ebs-csi-driver<= 1.23.1-r4aws-ebs-csi-driver-1.23.1-r4.apk

OS	Version	Architecture	Package	Version	Filename
Wolfi	unknown	x86_64	aactl	<= 0.4.12-r7	aactl-0.4.12-r7.apk
Wolfi	unknown	aarch64	aactl	<= 0.4.12-r7	aactl-0.4.12-r7.apk
Wolfi	unknown	x86_64	apko	<= 0.10.0-r6	apko-0.10.0-r6.apk
Wolfi	unknown	aarch64	apko	<= 0.10.0-r6	apko-0.10.0-r6.apk
Wolfi	unknown	x86_64	argo-cd	<= 2.7.14-r5	argo-cd-2.7.14-r5.apk
Wolfi	unknown	aarch64	argo-cd	<= 2.7.14-r5	argo-cd-2.7.14-r5.apk
Wolfi	unknown	x86_64	argo-cd	<= 2.8.4-r4	argo-cd-2.8.4-r4.apk
Wolfi	unknown	aarch64	argo-cd	<= 2.8.4-r4	argo-cd-2.8.4-r4.apk
Wolfi	unknown	x86_64	aws-ebs-csi-driver	<= 1.23.1-r4	aws-ebs-csi-driver-1.23.1-r4.apk
Wolfi	unknown	aarch64	aws-ebs-csi-driver	<= 1.23.1-r4	aws-ebs-csi-driver-1.23.1-r4.apk