VDB
CGA-r99h-p46j-5922
CGA-r99h-p46j-5922
REJECTED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chainguard | kube-apiserver-1.28-default | 0, 0, 0 |
| Chainguard | kube-controller-manager-1.28 | 0, 0, 0 |
| Chainguard | kubectl-1.28-default | 0, 0, 0 |
| Chainguard | kubelet-1.28-default | 0, 0, 0 |
| Chainguard | kubeadm-1.28-default | 0, 0, 0 |
| Chainguard | kube-apiserver-1.28 | 0, 0, 0 |
| Chainguard | kubelet-1.28 | 0, 0, 0 |
| Chainguard | kubeadm-1.28 | 0, 0, 0 |
| Chainguard | kubernetes-1.28 | 0, 0, 0 |
| Chainguard | kube-scheduler-1.28-default | 0, 0, 0 |
| Chainguard | kubectl-1.28 | 0, 0, 0 |
| Chainguard | kubectl-bash-completion-1.28 | 0, 0, 0 |
| Chainguard | kubernetes-1.28-default | 0, 0, 0 |
| Chainguard | kube-controller-manager-1.28-default | 0, 0, 0 |
| Chainguard | kube-scheduler-1.28 | 0, 0, 0 |
| Chainguard | kube-proxy-1.28 | 0, 0, 0 |
| Chainguard | kube-proxy-1.28-default | 0, 0, 0 |
Exploit Intelligence
- Module written in Ruby with the objective of exploiting vulnerabilities CVE-2023-2728 and CVE-2024-3177, both related to the secret mount policy in a Kubernetes cluster using a custom Metasploit module. Part of a Cybersecurity Master's degree finalization project. (github-poc-repo)
- Module written in Ruby with the objective of exploiting vulnerabilities CVE-2023-2728 and CVE-2024-3177, both related to the secret mount policy in a Kubernetes cluster using a custom Metasploit module. Part of a Cybersecurity Master's degree finalization project. (github-poc)
- CVE.json (github-poc)
Timeline
- Jan 28, 2026 CVE Rejected