cbcvebase.
CVE-2015-7561
published 2017-08-07

CVE-2015-7561: Kubernetes in OpenShift3 allows remote authenticated users to use the private images of other users should they know the name of said image.

PriorityP413low3.1CVSS 3.0
AVNACHPRLUINSUCLINAN
EPSS
1.17%
63.6th percentile
Kubernetes in OpenShift3 allows remote authenticated users to use the private images of other users should they know the name of said image.

Affected

2 ranges
VendorProductVersion rangeFixed in
k8s.iokubernetes>= 0 < 1.2.0-alpha.61.2.0-alpha.6
redhatopenshift

CVSS provenance

nvdv3.03.1LOWCVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:P/I:N/A:N
vendor_redhat3.1LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.