Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kubernetes dashboard vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-18264
Kubernetes Dashboard prior to 1.10.1 allows malicious users to bypass authentication and use Dashboard's Service Account for reading secrets within the cluster.
Kubernetes Dashboard
6.8
CVSSv2
CVE-2018-1002103
In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000. In VM environments where the IP is easy to predict, the attacker can use DNS rebinding to indirectly make requests to the Kubernetes Dashboard, create a new Kubernet...
Kubernetes Minikube
2 Github repositories
NA
CVE-2023-3361
A flaw was found in Red Hat OpenShift Data Science. When exporting a pipeline from the Elyra notebook pipeline editor as Python DSL or YAML, it reads S3 credentials from the cluster (ds pipeline server) and saves them in plain text in the generated output instead of an ID for a K...
Opendatahub Open Data Hub Dashboard
Redhat Openshift Data Science -
4.3
CVSSv2
CVE-2022-24829
Garden is an automation platform for Kubernetes development and testing. In versions before 0.12.39 multiple endpoints did not require authentication. In some operating modes this allows for an malicious user to gain access to the application erroneously. The configuration is lea...
Garden Garden
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started