Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kubernetes kubernetes 1.14.0 vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2018-1002102
Improper validation of URL redirection in the Kubernetes API server in versions prior to v1.14.0 allows an attacker-controlled Kubelet to redirect API server requests from streaming endpoints to arbitrary hosts. Impacted API servers will follow the redirect as a GET request with ...
Kubernetes Kubernetes 1.14.0
Kubernetes Kubernetes
Fedoraproject Fedora 31
445
VMScore
CVE-2019-9946
Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which ...
Kubernetes Kubernetes
Kubernetes Kubernetes 1.13.6
Kubernetes Kubernetes 1.14.0
Cncf Portmap
Netapp Cloud Insights -
1 Github repository
573
VMScore
CVE-2019-11248
The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and co...
Kubernetes Kubernetes 1.13.0
Kubernetes Kubernetes 1.13.3
Kubernetes Kubernetes 1.13.4
Kubernetes Kubernetes 1.13.6
Kubernetes Kubernetes 1.13.7
Kubernetes Kubernetes 1.14.0
Kubernetes Kubernetes 1.14.3
Kubernetes Kubernetes 1.15.0
Kubernetes Kubernetes 1.13.1
Kubernetes Kubernetes 1.13.2
Kubernetes Kubernetes 1.13.5
Kubernetes Kubernetes 1.14.1
Kubernetes Kubernetes 1.14.2
Kubernetes Kubernetes
Kubernetes Kubernetes 1.13.8
Kubernetes Kubernetes 1.14.4
517
VMScore
CVE-2019-1002101
The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes creates a tar inside the container, copies it over the network, and kubectl unpacks it on the user’s machine. If the tar binary in the container i...
Kubernetes Kubernetes
Kubernetes Kubernetes 1.14.0
Redhat Openshift Container Platform 3.9
Redhat Openshift Container Platform 3.11
Redhat Openshift Container Platform 3.10
3 Github repositories
538
VMScore
CVE-2020-8554
Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec.externalIPs field, to intercept traffic to that IP address. Additionally, an attacker who is able to patch the status (which is considered a privileged operation and...
Kubernetes Kubernetes
Oracle Communications Cloud Native Core Network Slice Selection Function 1.2.1
Oracle Communications Cloud Native Core Service Communication Proxy 1.14.0
Oracle Communications Cloud Native Core Policy 1.15.0
14 Github repositories
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started