Total
7 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-27075 | 1 Microsoft | 5 Azure Container Instances, Azure Container Registry, Azure Kubernetes Service and 2 more | 2024-11-21 | 2.7 LOW | 6.8 MEDIUM |
Azure Virtual Machine Information Disclosure Vulnerability | |||||
CVE-2021-24109 | 1 Microsoft | 1 Azure Kubernetes Service | 2024-11-21 | 6.0 MEDIUM | 6.8 MEDIUM |
Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability | |||||
CVE-2021-1677 | 1 Microsoft | 1 Azure Kubernetes Service | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
Azure Active Directory Pod Identity Spoofing Vulnerability | |||||
CVE-2024-21403 | 1 Microsoft | 1 Azure Kubernetes Service | 2024-10-07 | N/A | 9.0 CRITICAL |
Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability | |||||
CVE-2023-44487 | 32 Akka, Amazon, Apache and 29 more | 311 Http Server, Opensearch Data Prepper, Apisix and 308 more | 2024-08-14 | N/A | 7.5 HIGH |
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. | |||||
CVE-2023-29332 | 1 Microsoft | 1 Azure Kubernetes Service | 2024-05-29 | N/A | 9.8 CRITICAL |
Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability | |||||
CVE-2024-21376 | 1 Microsoft | 1 Azure Kubernetes Service | 2024-05-29 | N/A | 9.0 CRITICAL |
Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability |