vulnerability
Oracle Linux: (CVE-2023-2728) (Multiple Advisories): olcne security update
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
8 | (AV:N/AC:L/Au:M/C:C/I:C/A:N) | 2023-07-03 | 2024-05-21 | 2025-01-28 |
Severity
8
CVSS
(AV:N/AC:L/Au:M/C:C/I:C/A:N)
Published
2023-07-03
Added
2024-05-21
Modified
2025-01-28
Description
Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.
Solution(s)
oracle-linux-upgrade-kubeadmoracle-linux-upgrade-kubectloracle-linux-upgrade-kubeletoracle-linux-upgrade-kubernetesoracle-linux-upgrade-olcneoracle-linux-upgrade-olcne-agentoracle-linux-upgrade-olcne-api-serveroracle-linux-upgrade-olcne-calico-chartoracle-linux-upgrade-olcne-extra-modulesoracle-linux-upgrade-olcne-gluster-chartoracle-linux-upgrade-olcne-grafana-chartoracle-linux-upgrade-olcne-istio-chartoracle-linux-upgrade-olcne-kubevirt-chartoracle-linux-upgrade-olcne-metallb-chartoracle-linux-upgrade-olcne-multus-chartoracle-linux-upgrade-olcne-nginxoracle-linux-upgrade-olcne-oci-ccm-chartoracle-linux-upgrade-olcne-olm-chartoracle-linux-upgrade-olcne-prometheus-chartoracle-linux-upgrade-olcne-rook-chartoracle-linux-upgrade-olcne-utilsoracle-linux-upgrade-olcnectloracle-linux-upgrade-yq
References

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.