CVE-2019-3682

Summary

The docker-kubic package in SUSE CaaS Platform 3.0 before 17.09.1_ce-7.6.1 provided access to an insecure API locally on the Kubernetes master node.

Affected Software

VendorProductVersion RangeStatus
SUSESUSE CaaS Platform 3.0docker-kubic < 17.09.1_ce-7.6.1affected

Weaknesses

  • CWE-668: CWE-668: Exposure of Resource to Wrong Sphere

ADP Enrichment

CVE Program Container

Additional References

References