CVE-2023-1174

This vulnerability exposes a network port in minikube running on macOS with Docker driver that could enable unexpected remote access to the minikube container.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:kubernetes:minikube:1.26.0:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:minikube:1.26.1:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:minikube:1.27.0:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:minikube:1.27.1:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:minikube:1.28.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

History

31 May 2023, 19:09

Type Values Removed Values Added
CWE NVD-CWE-noinfo
CPE cpe:2.3:a:kubernetes:minikube:1.26.1:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:minikube:1.28.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:minikube:1.26.0:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:minikube:1.27.1:*:*:*:*:*:*:*
cpe:2.3:a:kubernetes:minikube:1.27.0:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
First Time Apple macos
Kubernetes
Apple
Kubernetes minikube
References (MISC) https://groups.google.com/g/kubernetes-security-announce/c/2ZkJFMDTKbM - (MISC) https://groups.google.com/g/kubernetes-security-announce/c/2ZkJFMDTKbM - Mailing List

Information

Published : 2023-05-24 17:15

Updated : 2024-02-28 20:13


NVD link : CVE-2023-1174

Mitre link : CVE-2023-1174

CVE.ORG link : CVE-2023-1174


JSON object : View

Products Affected

apple

  • macos

kubernetes

  • minikube
CWE
NVD-CWE-noinfo CWE-266

Incorrect Privilege Assignment