GHSA-qc2g-gmh6-95p4

Source

https://github.com/advisories/GHSA-qc2g-gmh6-95p4

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-qc2g-gmh6-95p4/GHSA-qc2g-gmh6-95p4.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-qc2g-gmh6-95p4

Aliases

Related

Published

2023-07-03T21:30:57Z

Modified

2024-08-20T20:59:05.839057Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N CVSS Calculator

Summary

kube-apiserver vulnerable to policy bypass

Details

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers.

Database specific

{
    "nvd_published_at": "2023-07-03T21:15:09Z",
    "cwe_ids": [
        "CWE-20"
    ],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2023-07-05T22:46:57Z"
}

References