Vulnerability Database
289,599
Total vulnerabilities in the database
CVE-2023-2727
Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers.
| Software | From | Fixed in |
|---|---|---|
k8s.io/kubernetes
|
1.27.0 | 1.27.3 |
|
k8s.io/kubernetes
|
1.26.0 | 1.26.6 |
|
k8s.io/kubernetes
|
1.25.0 | 1.25.11 |
|
k8s.io/kubernetes
|
- | 1.24.15 |
| kubernetes / kubernetes | 1.27.0 | 1.27.2.x |
| kubernetes / kubernetes | 1.26.0 | 1.26.5.x |
| kubernetes / kubernetes | 1.25.0 | 1.25.10.x |
| kubernetes / kubernetes | - | 1.24.14.x |
- http://www.openwall.com/lists/oss-security/2023/07/06/2
- https://github.com/kubernetes/kubernetes/issues/118640
- https://github.com/kubernetes/kubernetes/pull/118356
- https://github.com/kubernetes/kubernetes/pull/118471
- https://github.com/kubernetes/kubernetes/pull/118473
- https://github.com/kubernetes/kubernetes/pull/118474
- https://github.com/kubernetes/kubernetes/pull/118512
- https://groups.google.com/g/kubernetes-security-announce/c/vPWYJ_L84m8
- https://security.netapp.com/advisory/ntap-20230803-0004/