VYPR
Moderate severityNVD Advisory· Published Jul 3, 2023· Updated Feb 13, 2025

Bypassing policies imposed by the ImagePolicyWebhook admission plugin

CVE-2023-2727

Description

Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
k8s.io/kubernetesGo
>= 1.27.0, < 1.27.31.27.3
k8s.io/kubernetesGo
>= 1.26.0, < 1.26.61.26.6
k8s.io/kubernetesGo
>= 1.25.0, < 1.25.111.25.11
k8s.io/kubernetesGo
< 1.24.151.24.15

Affected products

101

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.