Linuxfoundation

Kubeedge

8 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2022-31075

  • EPSS 0.55%
  • Veröffentlicht 11.07.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:50

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, EdgeCore may be susceptible to a DoS attack on CloudHub if an attacker was to s...

6.5

CVE-2022-31078

  • EPSS 0.27%
  • Veröffentlicht 11.07.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:50

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, the CloudCore Router does not impose a limit on the size of responses to reques...

6.5

CVE-2022-31079

  • EPSS 0.27%
  • Veröffentlicht 11.07.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:51

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, the Cloud Stream server and the Edge Stream server reads the entire message int...

6.5

CVE-2022-31080

  • EPSS 0.27%
  • Veröffentlicht 11.07.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:51

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, a large response received by the viaduct WSClient can cause a DoS from memory e...

7.5

CVE-2022-31073

Exploit
  • EPSS 0.53%
  • Veröffentlicht 11.07.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:50

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, the ServiceBus server on the edge side may be susceptible to a DoS attack if an...

6.5

CVE-2022-31074

  • EPSS 0.35%
  • Veröffentlicht 11.07.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:50

KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, several endpoints in the Cloud AdmissionController may be susceptible to a DoS ...

5.7

CVE-2022-31077

  • EPSS 0.32%
  • Veröffentlicht 27.06.2022 21:15:07
  • Zuletzt bearbeitet 21.11.2024 07:03:50

KubeEdge is built upon Kubernetes and extends native containerized application orchestration and device management to hosts at the Edge. In affected versions a malicious message response from KubeEdge can crash the CSI Driver controller server by tri...

5.7

CVE-2022-31076

Exploit
  • EPSS 0.09%
  • Veröffentlicht 27.06.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:50

KubeEdge is built upon Kubernetes and extends native containerized application orchestration and device management to hosts at the Edge. In affected versions a malicious message can crash CloudCore by triggering a nil-pointer dereference in the UDS S...