github.com/projectcapsule/capsule-proxy
Go2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting github.com/projectcapsule/capsule-proxypage 1 of 1
- CVE-2023-46254MEDIUMCVSS 4.3EG 4.3✓ Fixed in 0.4.52023-11-06
capsule-proxy is a reverse proxy for Capsule kubernetes multi-tenancy framework. A bug in the RoleBinding reflector used by `capsule-proxy` gives ServiceAccount tenant owners the right to list Namespaces of other tenants backed by the same…
- CVE-2023-48312CRITICALCVSS 9.8EG 9.8✓ Fixed in 0.4.62023-11-24
capsule-proxy is a reverse proxy for the capsule operator project. Affected versions are subject to a privilege escalation vulnerability which is based on a missing check if the user is authenticated based on the `TokenReview` result. All …
Check whether github.com/projectcapsule/capsule-proxy is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/projectcapsule/capsule-proxy CVEs against the assets you own.
Start Free Scan →