CVE-2023-2727

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2023-2727

Severity

6.5

Medium

CVSS V3

Description

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers.

References

https://images.chainguard.dev/security/CGA-rxg4-cpwq-2w7j
https://github.com/advisories/GHSA-qc2g-gmh6-95p4
https://images.chainguard.dev/security/CGA-26j4-f4w4-6f65
https://images.chainguard.dev/security/CGA-98jw-q53j-x696
https://images.chainguard.dev/security/CGA-5hp6-8xch-g7p7
https://images.chainguard.dev/security/CGA-2wrh-m9wq-83qx
https://images.chainguard.dev/security/CGA-9q6c-q5hm-hx7f
https://images.chainguard.dev/security/CGA-xrgj-rgrg-359h
https://images.chainguard.dev/security/CGA-p624-9q38-mr57
https://images.chainguard.dev/security/CGA-8477-jx65-4855
https://images.chainguard.dev/security/CGA-8548-c72r-pxxx
https://images.chainguard.dev/security/CGA-mjrh-v33w-h9r9
https://images.chainguard.dev/security/CGA-4338-wjxw-pvqv
https://images.chainguard.dev/security/CGA-jwfh-48f4-3ppx
http://www.openwall.com/lists/oss-security/2023/07/06/2
https://security.netapp.com/advisory/ntap-20230803-0004/
https://github.com/kubernetes/kubernetes/issues/118640
https://groups.google.com/g/kubernetes-security-announce/c/vPWYJ_L84m8

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

The trusted source for open source

Talk to an expert

Privacy

Terms

CVE-2023-2727

Severity

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company