cloudnativeapp/spark
Fast and general-purpose cluster computing system.
Security Advisories for cloudnativeapp/spark in helm
Potential
Moderate
5 months ago
Kubernetes C# client accepts certificates from any CA without properly verifying the trust chain
nuget
KubernetesClient
Potential
Moderate
6 months ago
Kubernetes Nodes can delete themselves by adding an OwnerReference
go
k8s.io/kubernetes
Potential
Low
8 months ago
kubernetes allows nodes to bypass dynamic resource allocation authorization checks
go
k8s.io/kubernetes
Potential
High
11 months ago
ingress-nginx controller - configuration injection via unsanitized auth-url annotation
go
k8s.io/ingress-nginx
Potential
Moderate
11 months ago
ingress-nginx controller - auth secret file path traversal vulnerability
go
k8s.io/ingress-nginx
Potential
Potential
High
11 months ago
ingress-nginx controller - configuration injection via unsanitized mirror annotations
go
k8s.io/ingress-nginx
Potential
High
11 months ago
ngress-nginx controller - configuration injection via unsanitized auth-tls-match-cn annotation
go
k8s.io/ingress-nginx
Potential
Low
11 months ago
Kubernetes kube-apiserver Vulnerable to Race Condition
go
k8s.io/kubernetes/cmd/kube-apiserver
Potential
Moderate
12 months ago
Kubernetes GitRepo Volume Inadvertent Local Repository Access
go
k8s.io/kubernetes
Potential
Moderate
12 months ago
Kubernetes allows Command Injection affecting Windows nodes via nodes/*/logs/query API
go
k8s.io/kubernetes
Potential
Potential
Potential
Critical
over 1 year ago
VM images built with Image Builder and Proxmox provider use default credentials in github.com/kubernetes-sigs/image-builder
go
github.com/kubernetes-sigs/image-builder
Potential
Moderate
over 1 year ago
VM images built with Image Builder with some providers use default credentials during builds in github.com/kubernetes-sigs/image-builder
go
github.com/kubernetes-sigs/image-builder
Potential
High
over 1 year ago
Kubernetes sets incorrect permissions on Windows containers logs
go
k8s.io/kubernetes
Potential
Moderate
almost 2 years ago
azure-file-csi-driver leaks service account tokens in the logs
go
sigs.k8s.io/azurefile-csi-driver
Potential
Potential
Moderate
almost 2 years ago
Sensitive Information leak via Log File in Kubernetes
go
github.com/kubernetes/kubernetes
Potential
Moderate
almost 2 years ago
Sensitive Information leak via Log File in Kubernetes
go
github.com/kubernetes/kubernetes
Potential
Potential
Moderate
almost 2 years ago
Privilege Escalation in Kubernetes
go
k8s.io/kubernetes, k8s.io/apimachinery
Potential
Low
almost 2 years ago
Kubernetes allows bypassing mountable secrets policy imposed by the ServiceAccount admission plugin
go
k8s.io/kubernetes
Potential
Potential
High
over 2 years ago
Kubernetes csi-proxy vulnerable to privilege escalation due to improper input validation
go
github.com/kubernetes-csi/csi-proxy/v2
Potential
Potential
Potential
Potential
Potential
Potential
Moderate
over 2 years ago
Kubelet vulnerable to bypass of seccomp profile enforcement
go
k8s.io/kubernetes
Potential
Moderate
almost 3 years ago
Kubernetes vulnerable to path traversal
go
github.com/kubernetes/kubernetes
Potential
High
almost 3 years ago
Kubernetes vulnerable to validation bypass
go
github.com/kubernetes/kubernetes
Potential
High
about 3 years ago
Kubernetes apimachinery packages vulnerable to unbounded recursion in JSON or YAML parsing
go
k8s.io/apimachinery
Potential
Moderate
about 3 years ago
Kubernetes client-go vulnerable to Sensitive Information Leak via Log File
go
k8s.io/client-go
Potential
Moderate
about 3 years ago
Kubernetes Sensitive Information leak via Log File
go
k8s.io/kubernetes, github.com/kubernetes/kubernetes
Potential
Moderate
almost 4 years ago
Kubernetes CSI Sidecar Containers Can Allow Unauthorized Data Access
go
github.com/kubernetes-csi/external-resizer, github.com/kubernetes-csi/external-snapshotter/v6, github.com/kubernetes-csi/external-provisioner
Potential
Moderate
almost 4 years ago
Kubernetes client-go library logs may disclose credentials to unauthorized users
go
k8s.io/kubernetes, k8s.io/client-go
Potential
High
almost 4 years ago
Kubernetes kube-apiserver unauthorized access
go
k8s.io/apiextensions-apiserver
Potential
High
almost 4 years ago
Kubernetes did not effectively clear service account credentials
go
k8s.io/kubernetes
Potential
Potential
Potential
Potential
Low
almost 4 years ago
Kubernetes in OpenShift3 Access Control Misconfiguration
go
k8s.io/kubernetes
Potential
Potential
Potential
Moderate
about 4 years ago
Exposure of Sensitive Information to an Unauthorized Actor and Insertion of Sensitive Information Into Sent Data in Calico
go
github.com/projectcalico/calico
Potential
Potential
Moderate
about 4 years ago
Allocation of Resources Without Limits or Throttling and Uncontrolled Memory Allocation in Kubernetes
go
k8s.io/kubernetes
Potential
Potential
Potential
Potential
Potential
Moderate
about 4 years ago
Directory Traversal in Kubernetes
go
k8s.io/kubernetes, github.com/kubernetes/kubernetes
Potential
Potential
Potential
Potential
Potential
Moderate
about 4 years ago
Excessive Platform Resource Consumption within a Loop in Kubernetes
go
gopkg.in/yaml.v2
Potential
Potential
Potential
Potential
Potential
High
almost 5 years ago
XML Entity Expansion and Improper Input Validation in Kubernetes API server
go
k8s.io/kubernetes
Potential
Potential