VYPR

apk package

wolfi/kubernetes-dashboard

pkg:apk/wolfi/kubernetes-dashboard

Vulnerabilities (82)

  • CVE-2023-2253Jun 6, 2023
    affected < 2.7.0-r2fixed 2.7.0-r2

    A flaw was found in the `/v2/_catalog` endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records returned (query string: `n`). This vulnerability allows a malicious user to submit an unreasonably large value for `n,` causing the all

  • CVE-2020-8559Jul 22, 2020
    affected < 7.11.1-r1fixed 7.11.1-r1

    The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.

Page 5 of 5