Vulnerability CVE-2023-2727: Information

Description

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers.

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

URL: https://nvd.nist.gov/vuln/detail/CVE-2023-2727
Published: July 4, 2023
Modified: Aug. 3, 2023

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://github.com/kubernetes/kubernetes/issues/118640
  • Issue Tracking
https://groups.google.com/g/kubernetes-security-announce/c/vPWYJ_L84m8
  • Mailing List
http://www.openwall.com/lists/oss-security/2023/07/06/2
  • Mailing List
  • Third Party Advisory
https://security.netapp.com/advisory/ntap-20230803-0004/

      1. Configuration 1

        cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*
        Start including
        1.27.0
        End including
        1.27.2
        cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*
        Start including
        1.26.0
        End including
        1.26.5
        cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*
        Start including
        1.25.0
        End including
        1.25.10
        cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*
        End including
        1.24.14
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.5.1
    Back to top