Wind River Support Network

HomeDefectsLIN1021-4397
Acknowledged

LIN1021-4397 : Security Advisory - kubernetes - CVE-2022-3172

Created: Sep 17, 2022    Updated: Nov 7, 2023
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

A security issue was discovered in kube-apiserver that allows an 
aggregated API server to redirect client traffic to any URL.  This could
 lead to the client performing unexpected actions as well as forwarding 
the client's API server credentials to third parties.


https://nvd.nist.gov/vuln/detail/CVE-2022-3172
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube