← Voltar para CVEs
CVE-2020-8558
MEDIUM5.4
Descricao
The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services bound to 127.0.0.1 running on the node or in the node's network namespace. Such a service is generally thought to be reachable only by other processes on the same host, but due to this defeect, could be reachable by other hosts on the same LAN as the node, or by containers running on the same node as the service.
Detalhes CVE
Pontuacao CVSS v3.15.4
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Vetor de ataqueADJACENT_NETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado7/27/2020
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
kubernetes:kubernetes
Fraquezas (CWE)
CWE-420
Referencias
https://github.com/kubernetes/kubernetes/issues/92315(jordan@liggitt.net)
https://groups.google.com/g/kubernetes-announce/c/sI4KmlH3S2I/m/TljjxOBvBQAJ(jordan@liggitt.net)
https://security.netapp.com/advisory/ntap-20200821-0001/(jordan@liggitt.net)
https://github.com/kubernetes/kubernetes/issues/92315(af854a3a-2127-422b-91ae-364da2661108)
https://groups.google.com/g/kubernetes-announce/c/sI4KmlH3S2I/m/TljjxOBvBQAJ(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20200821-0001/(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.