Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.8
CVSSv3

CVE-2023-3893

Published: 03/11/2023 Updated: 21/12/2023
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Kubernetes

Vulnerability Summary

A security issue exists in Kubernetes where a user that can create pods on Windows nodes running kubernetes-csi-proxy may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes running kubernetes-csi-proxy.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

kubernetes csi proxy 2.0.0

kubernetes csi proxy

Vendor Advisories

Red Hat:
Description<!----> This CVE is under investigation by Red Hat Product Security ...

References

NVD-CWE-noinfohttps://groups.google.com/g/kubernetes-security-announce/c/lWksE2BoCyQhttps://github.com/kubernetes/kubernetes/issues/119594https://security.netapp.com/advisory/ntap-20231221-0004/https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2023-3893
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook