Published: 05/06/2023 Updated: 12/06/2023

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 0

The grc-policy-propagator allows security escalation within the cluster. The propagator allows policies which contain some dynamically obtained values (instead of the policy apply a static manifest on a managed cluster) of taking advantage of cluster scoped access in a created policy. This feature does not restrict properly to lookup content from the namespace where the policy was created.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat advanced cluster management for kubernetes 2.6
redhat advanced cluster management for kubernetes 2.7
redhat advanced cluster management for kubernetes 2.5

概述 Critical: Red Hat Advanced Cluster Management 281 security and bug fix updates 类型/严重性 Security Advisory: Critical 标题 Red Hat Advanced Cluster Management for Kubernetes 281 GeneralAvailability release images, which provide security updates and fix bugsRed Hat Product Security has rated this update as having a security ...

Description This CVE is under investigation by Red Hat Product Security ...

CWE-269 https://bugzilla.redhat.com/show_bug.cgi?id=2211468#c0 https://access.redhat.com/errata/RHSA-2023:4875 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2023-3027

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-3027

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect