Published: 23/07/2020 Updated: 27/01/2023

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 188

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted in a pod by kubelet is not included by the kubelet eviction manager when calculating ephemeral storage usage by a pod. If a pod writes a large amount of data to the /etc/hosts file, it could fill the storage space of the node and cause the node to fail.

Vulnerable Product	Search on Vulmon	Subscribe to Product
kubernetes kubernetes

Synopsis Moderate: OpenShift Container Platform 4419 openshift-enterprise-hyperkube-container security update Type/Severity Security Advisory: Moderate Topic An update for openshift-enterprise-hyperkube-container is now available for Red Hat OpenShift Container Platform 44Red Hat Product Security has ra ...

Synopsis Important: OpenShift Container Platform 457 jenkins and openshift packages security update Type/Severity Security Advisory: Important Topic An update for jenkins and openshift is now available for Red Hat OpenShift Container Platform 45Red Hat Product Security has rated this update as having a ...

Synopsis Important: OpenShift Container Platform 4338 jenkins and openshift security update Type/Severity Security Advisory: Important Topic An update for jenkins and openshift is now available for Red Hat OpenShift Container Platform 43Red Hat Product Security has rated this update as having a security ...

Synopsis Moderate: OpenShift Container Platform 4419 openshift security update Type/Severity Security Advisory: Moderate Topic An update for openshift is now available for Red Hat OpenShift Container Platform 44Red Hat Product Security has rated this update as having a security impact of Moderate A Com ...

Synopsis Moderate: OpenShift Container Platform 457 openshift-enterprise-hyperkube-container security update Type/Severity Security Advisory: Moderate Topic An update for openshift-enterprise-hyperkube-container is now available for Red Hat OpenShift Container Platform 45Red Hat Product Security has rat ...

Synopsis Moderate: OpenShift Container Platform 4338 container image security update Type/Severity Security Advisory: Moderate Topic An update for openshift-enterprise-hyperkube-container and sriov-dp-admission-controller-container is now available for Red Hat OpenShift Container Platform 43Red Hat Prod ...

oss-sec mailing list archives   By Date By Thread </form>    CVE-2020-8557: Kubernetes: Node disk DOS by writing to container /etc/hosts  <!--X-Head-of-Message- ...

Certified Kubernetes Security Specialist - CKS Online curated resources that will help you prepare for taking the Kubernetes Certified Kubernetes Security Specialist CKS Certification exam Please raise an issue, or make a pull request for fixes, new additions, or updates I will try to restrict the cross references of resources primarly to kubernetesio as CNCF/Linux Foundat

Certified Kubernetes Security Specialist - CKS Online curated resources that will help you prepare for taking the Kubernetes Certified Kubernetes Security Specialist CKS Certification exam Please raise an issue, or make a pull request for fixes, new additions, or updates Resources are primarly cross referenced back to the allowed CKS sites during the exam as per CNCF/L

Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.

Certified Kubernetes Security Specialist - CKS Online curated resources that will help you prepare for taking the Kubernetes Certified Kubernetes Security Specialist CKS Certification exam Please raise an issue, or make a pull request for fixes, new additions, or updates Resources are primarly cross referenced back to the allowed CKS sites during the exam as per CNCF/L

Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.

Certified Kubernetes Security Specialist - CKS Online curated resources that will help you prepare for taking the Kubernetes Certified Kubernetes Security Specialist CKS Certification exam Please raise an issue, or make a pull request for fixes, new additions, or updates Resources are primarly cross referenced back to the allowed CKS sites during the exam as per CNCF/L

CWE-400 https://github.com/kubernetes/kubernetes/issues/93032 https://groups.google.com/g/kubernetes-security-announce/c/cB_JUsYEKyY/m/vVSO61AhBwAJ https://security.netapp.com/advisory/ntap-20200821-0002/https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2020:3580 https://github.com/walidshaari/Certified-Kubernetes-Secuirty-Specialist

CVE-2020-8557

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

Github Repositories

References

Vulmon Search

About

Products

Connect