rpm package
suse/kubevirt&distro=SUSE Linux Enterprise Module for Containers 15 SP5
pkg:rpm/suse/kubevirt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP5
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-33394 | — | < 1.1.1-150500.8.18.1 | 1.1.1-150500.8.18.1 | May 2, 2024 | An issue in kubevirt kubevirt v1.2.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component. | ||
| CVE-2023-44487 | Hig | 7.5 | KEV | < 1.1.0-150500.8.6.1 | 1.1.0-150500.8.6.1 | Oct 10, 2023 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
- CVE-2024-33394May 2, 2024affected < 1.1.1-150500.8.18.1fixed 1.1.1-150500.8.18.1
An issue in kubevirt kubevirt v1.2.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component.
- affected < 1.1.0-150500.8.6.1fixed 1.1.0-150500.8.6.1
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.