Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kubernetes dashboard vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-18264
Kubernetes Dashboard prior to 1.10.1 allows malicious users to bypass authentication and use Dashboard's Service Account for reading secrets within the cluster.
Kubernetes Dashboard
8.8
CVSSv3
CVE-2018-1002103
In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000. In VM environments where the IP is easy to predict, the attacker can use DNS rebinding to indirectly make requests to the Kubernetes Dashboard, create a new Kubernet...
Kubernetes Minikube
2 Github repositories
7.5
CVSSv3
CVE-2023-3361
A flaw was found in Red Hat OpenShift Data Science. When exporting a pipeline from the Elyra notebook pipeline editor as Python DSL or YAML, it reads S3 credentials from the cluster (ds pipeline server) and saves them in plain text in the generated output instead of an ID for a K...
Opendatahub Open Data Hub Dashboard
Redhat Openshift Data Science -
9.8
CVSSv3
CVE-2022-24829
Garden is an automation platform for Kubernetes development and testing. In versions before 0.12.39 multiple endpoints did not require authentication. In some operating modes this allows for an malicious user to gain access to the application erroneously. The configuration is lea...
Garden Garden
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started