CVSS: 9.0EPSS: 1%CPEs: 1EXPL: 0CVE-2024-29990 – Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-29990
09 Apr 2024 — Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del contenedor confidencial del servicio Microsoft Azure Kubernetes • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29990 • CWE-284: Improper Access Control •
CVSS: 9.0EPSS: 1%CPEs: 1EXPL: 0CVE-2024-21400 – Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-21400
12 Mar 2024 — Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del contenedor confidencial del servicio Microsoft Azure Kubernetes • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21400 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.0EPSS: 2%CPEs: 1EXPL: 0CVE-2024-21403 – Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-21403
13 Feb 2024 — Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del contenedor confidencial del servicio Microsoft Azure Kubernetes • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21403 • CWE-552: Files or Directories Accessible to External Parties •
CVSS: 7.8EPSS: 94%CPEs: 444EXPL: 17CVE-2023-44487 – HTTP/2 Rapid Reset Attack Vulnerability
https://notcve.org/view.php?id=CVE-2023-44487
10 Oct 2023 — The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. El protocolo HTTP/2 permite una denegación de servicio (consumo de recursos del servidor) porque la cancelación de solicitudes puede restablecer muchas transmisiones rápidamente, como se explotó en la naturaleza entre agosto y octubre de 2023. A flaw was found in handling multiplexed streams in the HTTP/2 protocol. ... • https://github.com/imabee101/CVE-2023-44487 • CWE-400: Uncontrolled Resource Consumption •