DirectorySecurity Advisories
Sign In
Security Advisories

CGA-66wc-mcp8-329v

Published

Last updated

https://images.chainguard.dev/security/CGA-66wc-mcp8-329v
Package

coredns

Latest Update
Not affected
Aliases
  • CVE-2022-2837
  • GHSA-h828-v5pv-33qx

Severity

6.1

Medium

CVSS V3

Summary

coreDNS vulnerable to Improper Restriction of Communication Channel to Intended Endpoints

Description

A flaw was found in coreDNS. This flaw allows a malicious user to redirect traffic intended for external top-level domains (TLD) to a pod they control by creating projects and namespaces that match the TLD.

References

Updates

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogResearchEventsTrust CenterDocumentation