Vulnerability Report: GO-2022-0703
- CVE-2019-11253, GHSA-pmqp-h87c-mr78
- Affects: k8s.io/kubernetes
- Published: Aug 21, 2024
XML Entity Expansion and Improper Input Validation in Kubernetes API server in k8s.io/kubernetes
For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-pmqp-h87c-mr78 or https://nvd.nist.gov/vuln/detail/CVE-2019-11253.
Affected Packages
-
PathVersionsSymbols
Aliases
References
- https://github.com/advisories/GHSA-pmqp-h87c-mr78
- https://nvd.nist.gov/vuln/detail/CVE-2019-11253
- https://access.redhat.com/errata/RHSA-2019:3239
- https://access.redhat.com/errata/RHSA-2019:3811
- https://access.redhat.com/errata/RHSA-2019:3905
- https://gist.github.com/bgeesaman/0e0349e94cd22c48bf14d8a9b7d6b8f2
- https://github.com/kubernetes/kubernetes/issues/83253
- https://github.com/kubernetes/kubernetes/pull/83261
- https://groups.google.com/forum/#!topic/kubernetes-security-announce/jk8polzSUxs
- https://security.netapp.com/advisory/ntap-20191031-0006
- https://vuln.go.dev/ID/GO-2022-0703.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.