UBUNTU-CVE-2023-2727

See a problem?

Source

https://ubuntu.com/security/notices/UBUNTU-CVE-2023-2727

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-2727.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-2727

Related

CVE-2023-2727

Published

2023-07-03T21:15:00Z

Modified

2024-10-15T14:11:25Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N CVSS Calculator

Summary

[none]

Details

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers.

References

Affected packages

Ubuntu:20.04:LTS / kubernetes

Package

Name: kubernetes
Purl: pkg:deb/ubuntu/kubernetes?arch=src?distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / kubernetes

Package

Name: kubernetes
Purl: pkg:deb/ubuntu/kubernetes?arch=src?distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / kubernetes

Package

Name: kubernetes
Purl: pkg:deb/ubuntu/kubernetes?arch=src?distro=oracular

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / kubernetes

Package

Name: kubernetes
Purl: pkg:deb/ubuntu/kubernetes?arch=src?distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0

Ecosystem specific

{
    "ubuntu_priority": "medium"
}