github.com/khulnasoft-lab/tunnel-db@v0.0.0-20231117205118-74e1113bd007/pkg/vulnsrc/k8svulndb/testdata/happy/vuln-list-k8s/upstream/CVE-2023-2728.json

github.com/khulnasoft-lab/tunnel-db@v0.0.0-20231117205118-74e1113bd007/pkg/vulnsrc/k8svulndb/testdata/happy/vuln-list-k8s/upstream/CVE-2023-2728.json (about)

     1  {
     2    "id": "CVE-2023-2727",
     3    "modified": "2023-06-13T14:42:06Z",
     4    "published": "2023-06-13T14:42:06Z",
     5    "summary": "Bypassing policies imposed by the ImagePolicyWebhook and bypassing mountable secrets policy imposed by the ServiceAccount admission plugin",
     6    "details": "Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers.\n\n",
     7    "affected": [
     8      {
     9        "package": {
    10          "ecosystem": "kubernetes",
    11          "name": "k8s.io/apiserver"
    12        },
    13        "severity": [
    14          {
    15            "type": "CVSS_V3",
    16            "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"
    17          }
    18        ],
    19        "ranges": [
    20          {
    21            "events": [
    22              {
    23                "introduced": "1.24.0"
    24              },
    25              {
    26                "last_affected": "1.24.14"
    27              }
    28            ]
    29          }
    30        ]
    31      }
    32    ],
    33    "references": [
    34      {
    35        "url": "https: //www.cve.org/cverecord?id=CVE-2023-2727"
    36      }
    37    ]
    38  }