CGA-5rxq-9v3g-v36v

Published

Last updated

https://images.chainguard.dev/security/CGA-5rxq-9v3g-v36v

Package

kubernetes-1.22

Latest Update

Not affected

Aliases

Severity

7.7

High

CVSS V3

Summary

Access Restriction Bypass in kubernetes

Description

The API server in Kubernetes does not properly check admission control, which allows remote authenticated users to access additional resources via a crafted patched object.

Specific Go Packages Affected

github.com/kubernetes/kubernetes/pkg/apiserver

References

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CGA-5rxq-9v3g-v36v

Severity

Summary

Description

Specific Go Packages Affected

References

Updates

Product

Why Chainguard

Customers

Company

Resources