National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2018-1002105

Change History

Initial Analysis - 12/11/2018 1:47:58 PM

Action Type Old Value New Value
Added CVSS V2
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Changed Reference Type
https://github.com/kubernetes/kubernetes/issues/71411 No Types Assigned
https://github.com/kubernetes/kubernetes/issues/71411 Issue Tracking, Mitigation, Patch, Third Party Advisory
Changed Reference Type
https://groups.google.com/forum/#!topic/kubernetes-announce/GVllWCg6L88 No Types Assigned
https://groups.google.com/forum/#!topic/kubernetes-announce/GVllWCg6L88 Mailing List, Third Party Advisory
Changed Reference Type
http://www.securityfocus.com/bid/106068 No Types Assigned
http://www.securityfocus.com/bid/106068 Third Party Advisory, VDB Entry
Added CPE Configuration
OR
     *cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:* versions from (including) 1.0.0 up to (including) 1.9.11
     *cpe:2.3:a:kubernetes:kubernetes:1.9.12:beta0:*:*:*:*:*:*
     *cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:* versions from (including) 1.10.0 up to (including) 1.10.10
     *cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:* versions from (including) 1.11.0 up to (including) 1.11.4
     *cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:* versions from (including) 1.12.0 up to (including) 1.12.2
Added CVSS V3
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:3754 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:3754 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:3752 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:3752 Third Party Advisory
Added CWE
CWE-388
Added CPE Configuration
OR
     *cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:openshift_container_platform:3.4:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:openshift_container_platform:3.5:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:openshift_container_platform:3.6:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:openshift_container_platform:3.8:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:openshift_container_platform:3.10:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:openshift_container_platform:3.11:*:*:*:*:*:*:*
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:3549 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:3549 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:3742 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:3742 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:3537 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:3537 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:3598 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:3598 Third Party Advisory
Changed Reference Type
https://github.com/evict/poc_CVE-2018-1002105 No Types Assigned
https://github.com/evict/poc_CVE-2018-1002105 Exploit, Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:3624 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:3624 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:3551 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:3551 Third Party Advisory