Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-3955

Published: 31/10/2023 Updated: 21/12/2023
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Kubernetes

Vulnerability Summary

A security issue exists in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

kubernetes kubernetes

Vendor Advisories

Red Hat: Important: Red Hat OpenShift support for Windows Containers 6.0.2 security update
Synopsis Important: Red Hat OpenShift support for Windows Containers 602 security update Type/Severity Security Advisory: Important Topic The components for Red Hat OpenShift support for Windows Containers 602 are now available This product release includes bug fixes and security updates for the following packages: windows-machine-config ...
Red Hat: Important: Red Hat OpenShift for Windows Containers 9.0.0 security update
Synopsis Important: Red Hat OpenShift for Windows Containers 900 security update Type/Severity Security Advisory: Important Topic The components for Red Hat OpenShift for Windows Containers 900 are now available This product release includes bug fixes and security updates for the following packages: windows-machine-config-operator and wi ...
Red Hat: Important: Red Hat OpenShift support for Windows Containers 5.1.2 security update
概述 Important: Red Hat OpenShift support for Windows Containers 512 security update 类型/严重性 Security Advisory: Important 标题 The components for Red Hat OpenShift support for Windows Containers 512 are now available This product release includes bug fixes and security updates for the following packages: windows-machine-conf ...
Red Hat: Important: Red Hat OpenShift support for Windows Containers 8.0.2 security update
Synopsis Important: Red Hat OpenShift support for Windows Containers 802 security update Type/Severity Security Advisory: Important Topic The components for Red Hat OpenShift support for Windows Containers 802 are now available This product release includes bug fixes and security updates for the following packages: windows-machine-config ...
Red Hat: Important: Red Hat OpenShift support for Windows Containers 7.1.1 security update
Synopsis Important: Red Hat OpenShift support for Windows Containers 711 security update Type/Severity Security Advisory: Important Topic The components for Red Hat OpenShift support for Windows Containers 711 are now available This product release includes bug fixes and security updates for the following packages: windows-machine-config ...
Red Hat:
Description<!----> This CVE is under investigation by Red Hat Product Security ...

References

CWE-20https://github.com/kubernetes/kubernetes/issues/119595https://groups.google.com/g/kubernetes-security-announce/c/JrX4bb7d83Ehttps://security.netapp.com/advisory/ntap-20231221-0002/https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2023:4780https://access.redhat.com/security/cve/cve-2023-3955
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook