VDB
CVE-2022-3294
CVE-2022-3294
PUBLISHED
Es existiert eine Schwachstelle in Kubernetes. Der Fehler besteht aufgrund einer unsachgemäßen Validierung in "kube-apiserver". Ein entfernter, authentisierter Angreifer mit bestimmten Rechten kann diese Schwachstelle ausnutzen, um Sicherheitsmaßnahmen zu umgehen.
EPSS 0.69% · 72.3th percentile
Risk Scores
EPSS Score
0.69%
72.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM InfoSphere Information Server 11.7 | |
| Oracle | Oracle Linux | |
| SUSE | SUSE Linux |
Exploit Intelligence
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc-repo)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc-repo)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc-repo)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc-repo)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc-repo)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc-repo)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc-repo)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc-repo)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc)
- Privilege Escalation using nodes/proxy (create action allowed) and nodes/status (update/patch actions allowed) (github-poc)
…and 20 more exploits
Timeline
- Mar 1, 2023 CVE Published
- Mar 2, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 10, 2023 CVE Updated
- Apr 10, 2023 EPSS Score
- May 19, 2023 EPSS Score
- Jun 27, 2023 EPSS Score
- Sep 14, 2023 EPSS Score
- Oct 23, 2023 EPSS Score
- Dec 1, 2023 EPSS Score
- Jan 9, 2024 EPSS Score
- Feb 17, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0549.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0549 advisory
- https://linux.oracle.com/errata/ELSA-2023-12563.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014985.html advisory
- https://www.ibm.com/support/pages/node/6988149 advisory
- https://github.com/advisories/GHSA-jh36-q97c-9928 advisory