[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-1260":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":269,"aliases":270,"duplicate_of":9,"upstream":272,"downstream":273,"duplicates":284,"related":285,"reserved_at":9,"published_at":286,"modified_at":287,"state":288,"summary":289,"references_raw":298,"kevs":361,"epss":362,"epss_history":365,"metrics":633,"affected":643},"CVE-2023-1260","An authentication bypass vulnerability was discovered in kube-apiserver. This issue could allow a remote, authenticated attacker who has been given permissions \"update, patch\" the \"pods/ephemeralcontainers\" subresource beyond what the default is. They would then need to create a new pod or patch one that they already have access to. This might allow evasion of SCC admission restrictions, thereby gaining control of a privileged pod.",null,[11,18],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],{"_key":19,"id":19,"name":20,"description":21,"type":22,"status":23,"abstraction":24,"likelihood_of_exploit":9,"capec":25},"CWE-288","Authentication Bypass Using an Alternate Path or Channel","The product requires authentication, but the product has an alternate path or channel that does not require authentication.","weakness","Incomplete","Base",[26,88],{"id":27,"name":28,"techniques":29},"CAPEC-127","Directory Indexing",[30],{"id":31,"name":32,"tactics":33,"countermeasures":37},"T1083","File and Directory Discovery",[34],{"id":35,"name":36},"TA0102","Discovery",[38,43,47,52,57,62,67,72,76,80,84],{"id":39,"name":40,"tactic":41},"D3-FA","File Analysis",{"name":42},"Detect",{"id":44,"name":45,"tactic":46},"D3-FIM","File Integrity Monitoring",{"name":42},{"id":48,"name":49,"tactic":50},"D3-FEV","File Eviction",{"name":51},"Evict",{"id":53,"name":54,"tactic":55},"D3-DF","Decoy File",{"name":56},"Deceive",{"id":58,"name":59,"tactic":60},"D3-FE","File Encryption",{"name":61},"Harden",{"id":63,"name":64,"tactic":65},"D3-RF","Restore File",{"name":66},"Restore",{"id":68,"name":69,"tactic":70},"D3-LFP","Local File Permissions",{"name":71},"Isolate",{"id":73,"name":74,"tactic":75},"D3-CF","Content Filtering",{"name":71},{"id":77,"name":78,"tactic":79},"D3-RFAM","Remote File Access Mediation",{"name":71},{"id":81,"name":82,"tactic":83},"D3-CQ","Content Quarantine",{"name":71},{"id":85,"name":86,"tactic":87},"D3-CM","Content Modification",{"name":71},{"id":89,"name":90,"techniques":91},"CAPEC-665","Exploitation of Thunderbolt Protection Flaws",[92,127,166],{"id":93,"name":94,"tactics":95,"countermeasures":102},"T1211","Exploitation for Stealth",[96,99],{"id":97,"name":98},"TA0030","Defense Evasion",{"id":100,"name":101},"TA0005","Stealth",[103,107,111,115,119,123],{"id":104,"name":105,"tactic":106},"D3-MBT","Memory Boundary Tracking",{"name":42},{"id":108,"name":109,"tactic":110},"D3-PCSV","Process Code Segment Verification",{"name":42},{"id":112,"name":113,"tactic":114},"D3-SSC","Shadow Stack Comparisons",{"name":42},{"id":116,"name":117,"tactic":118},"D3-PSEP","Process Segment Execution Prevention",{"name":61},{"id":120,"name":121,"tactic":122},"D3-SAOR","Segment Address Offset Randomization",{"name":61},{"id":124,"name":125,"tactic":126},"D3-SFCV","Stack Frame Canary Validation",{"name":61},{"id":128,"name":129,"tactics":130,"countermeasures":136},"T1542.002","Component Firmware",[131,132,133],{"id":97,"name":98},{"id":100,"name":101},{"id":134,"name":135},"TA0110","Persistence",[137,142,146,150,154,158,162],{"id":138,"name":139,"tactic":140},"D3-SWI","Software Inventory",{"name":141},"Model",{"id":143,"name":144,"tactic":145},"D3-AVE","Asset Vulnerability Enumeration",{"name":141},{"id":147,"name":148,"tactic":149},"D3-FEMC","Firmware Embedded Monitoring Code",{"name":42},{"id":151,"name":152,"tactic":153},"D3-FV","Firmware Verification",{"name":42},{"id":155,"name":156,"tactic":157},"D3-FBA","Firmware Behavior Analysis",{"name":42},{"id":159,"name":160,"tactic":161},"D3-SU","Software Update",{"name":61},{"id":163,"name":164,"tactic":165},"D3-RS","Restore Software",{"name":66},{"id":167,"name":168,"tactics":169,"countermeasures":178},"T1556","Modify Authentication Process",[170,171,174,175],{"id":97,"name":98},{"id":172,"name":173},"TA0112","Defense Impairment",{"id":134,"name":135},{"id":176,"name":177},"TA0031","Credential Access",[179,183,187,191,193,195,199,203,207,211,213,217,221,225,229,231,233,235,239,241,243,245,247,249,253,257,261,265],{"id":180,"name":181,"tactic":182},"D3-CI","Configuration Inventory",{"name":141},{"id":184,"name":185,"tactic":186},"D3-NTPM","Network Traffic Policy Mapping",{"name":141},{"id":188,"name":189,"tactic":190},"D3-AM","Access Modeling",{"name":141},{"id":39,"name":40,"tactic":192},{"name":42},{"id":44,"name":45,"tactic":194},{"name":42},{"id":196,"name":197,"tactic":198},"D3-PLA","Process Lineage Analysis",{"name":42},{"id":200,"name":201,"tactic":202},"D3-PSMD","Process Self-Modification Detection",{"name":42},{"id":204,"name":205,"tactic":206},"D3-PSA","Process Spawn Analysis",{"name":42},{"id":208,"name":209,"tactic":210},"D3-SFA","System File Analysis",{"name":42},{"id":48,"name":49,"tactic":212},{"name":51},{"id":214,"name":215,"tactic":216},"D3-PT","Process Termination",{"name":51},{"id":218,"name":219,"tactic":220},"D3-PS","Process Suspension",{"name":51},{"id":222,"name":223,"tactic":224},"D3-HR","Host Reboot",{"name":51},{"id":226,"name":227,"tactic":228},"D3-HS","Host Shutdown",{"name":51},{"id":53,"name":54,"tactic":230},{"name":56},{"id":58,"name":59,"tactic":232},{"name":61},{"id":63,"name":64,"tactic":234},{"name":66},{"id":236,"name":237,"tactic":238},"D3-RC","Restore Configuration",{"name":66},{"id":73,"name":74,"tactic":240},{"name":71},{"id":68,"name":69,"tactic":242},{"name":71},{"id":77,"name":78,"tactic":244},{"name":71},{"id":81,"name":82,"tactic":246},{"name":71},{"id":85,"name":86,"tactic":248},{"name":71},{"id":250,"name":251,"tactic":252},"D3-KBPI","Kernel-based Process Isolation",{"name":71},{"id":254,"name":255,"tactic":256},"D3-SCF","System Call Filtering",{"name":71},{"id":258,"name":259,"tactic":260},"D3-HBPI","Hardware-based Process Isolation",{"name":71},{"id":262,"name":263,"tactic":264},"D3-ABPI","Application-based Process Isolation",{"name":71},{"id":266,"name":267,"tactic":268},"D3-WSAM","Web Session Access Mediation",{"name":71},[],[271],"GHSA-92hx-3mh6-hc49",[],[274,276,278,280,282],{"_key":275},"RHSA-2023:3976",{"_key":277},"RHSA-2023:4093",{"_key":279},"RHSA-2023:4312",{"_key":281},"RHSA-2023:4898",{"_key":283},"RHSA-2023:5008",[],[],"2023-09-24T00:07:08.130Z","2024-08-02T05:40:59.774Z","Modified",{"cisa_kev":290,"cisa_ransomware":290,"cisa_vendor":9,"epss_severity":291,"epss_score":292,"severity":293,"severity_score":294,"severity_version":295,"severity_source":296,"severity_vector":297,"severity_status":288},false,"low",0.00063,"high",8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",[299,309,313,317,321,325,330,335,340,344,348,352,357],{"url":300,"sources":301,"tags":304},"https://access.redhat.com/errata/RHSA-2023:3976",[296,302,303],"nvd","osv_go",[305,306,307,308],"Vendor Advisory","X Refsource REDHAT","Third Party Advisory","WEB",{"url":310,"sources":311,"tags":312},"https://access.redhat.com/errata/RHSA-2023:4093",[296,302,303],[305,306,307,308],{"url":314,"sources":315,"tags":316},"https://access.redhat.com/errata/RHSA-2023:4312",[296,302,303],[305,306,307,308],{"url":318,"sources":319,"tags":320},"https://access.redhat.com/errata/RHSA-2023:4898",[296,302,303],[305,306,307,308],{"url":322,"sources":323,"tags":324},"https://access.redhat.com/errata/RHSA-2023:5008",[296,302,303],[305,306,308],{"url":326,"sources":327,"tags":328},"https://access.redhat.com/security/cve/CVE-2023-1260",[296,302,303],[329,306,307,308],"VDB Entry",{"url":331,"sources":332,"tags":333},"https://bugzilla.redhat.com/show_bug.cgi?id=2176267",[296,302,303],[334,306,307,308],"Issue Tracking",{"url":336,"sources":337,"tags":338},"https://github.com/advisories/GHSA-92hx-3mh6-hc49",[296,302,303],[339],"Advisory",{"url":341,"sources":342,"tags":343},"https://security.netapp.com/advisory/ntap-20231020-0010/",[296,302],[307],{"url":345,"sources":346,"tags":347},"https://nvd.nist.gov/vuln/detail/CVE-2023-1260",[303],[339],{"url":349,"sources":350,"tags":351},"https://github.com/openshift/apiserver-library-go/commit/a994128188486d2dce99a528fbcc017d276081e0",[303],[308],{"url":353,"sources":354,"tags":355},"https://github.com/openshift/apiserver-library-go",[303],[356],"PACKAGE",{"url":358,"sources":359,"tags":360},"https://security.netapp.com/advisory/ntap-20231020-0010",[303],[308],[],{"date":363,"score":292,"percentile":364},"2026-06-04",0.1988,[366,370,373,376,379,382,385,388,391,394,397,399,402,405,408,412,415,418,421,424,427,430,433,436,439,442,445,448,451,454,457,460,463,465,468,471,474,477,480,483,486,489,492,495,498,501,504,507,510,513,516,519,522,525,528,531,534,537,540,543,546,549,552,555,558,561,564,567,570,573,576,579,582,584,586,589,592,595,598,601,604,607,610,613,616,618,621,624,627,630],{"date":367,"score":368,"percentile":369},"2025-11-04",0.00058,0.18085,{"date":371,"score":368,"percentile":372},"2025-11-05",0.18099,{"date":374,"score":368,"percentile":375},"2025-11-06",0.18069,{"date":377,"score":368,"percentile":378},"2025-11-07",0.18091,{"date":380,"score":368,"percentile":381},"2025-11-08",0.18093,{"date":383,"score":368,"percentile":384},"2025-11-09",0.18068,{"date":386,"score":368,"percentile":387},"2025-11-10",0.1803,{"date":389,"score":368,"percentile":390},"2025-11-11",0.18037,{"date":392,"score":368,"percentile":393},"2025-11-12",0.18075,{"date":395,"score":368,"percentile":396},"2025-11-13",0.18103,{"date":398,"score":368,"percentile":372},"2025-11-14",{"date":400,"score":368,"percentile":401},"2025-11-15",0.18074,{"date":403,"score":368,"percentile":404},"2025-11-16",0.18038,{"date":406,"score":368,"percentile":407},"2025-11-17",0.18004,{"date":409,"score":410,"percentile":411},"2025-11-18",0.00766,0.71288,{"date":413,"score":410,"percentile":414},"2025-11-19",0.71295,{"date":416,"score":410,"percentile":417},"2025-11-20",0.71303,{"date":419,"score":368,"percentile":420},"2025-11-21",0.18009,{"date":422,"score":368,"percentile":423},"2025-11-22",0.1802,{"date":425,"score":368,"percentile":426},"2025-11-23",0.1799,{"date":428,"score":368,"percentile":429},"2025-11-24",0.17956,{"date":431,"score":368,"percentile":432},"2025-11-25",0.17945,{"date":434,"score":368,"percentile":435},"2025-11-26",0.1793,{"date":437,"score":368,"percentile":438},"2025-11-27",0.17933,{"date":440,"score":368,"percentile":441},"2025-11-28",0.1792,{"date":443,"score":368,"percentile":444},"2025-11-29",0.17906,{"date":446,"score":368,"percentile":447},"2025-11-30",0.17911,{"date":449,"score":368,"percentile":450},"2025-12-01",0.17961,{"date":452,"score":368,"percentile":453},"2025-12-02",0.17968,{"date":455,"score":368,"percentile":456},"2025-12-03",0.1798,{"date":458,"score":368,"percentile":459},"2025-12-04",0.1794,{"date":461,"score":368,"percentile":462},"2025-12-05",0.17995,{"date":464,"score":368,"percentile":462},"2025-12-06",{"date":466,"score":368,"percentile":467},"2025-12-07",0.17979,{"date":469,"score":368,"percentile":470},"2025-12-08",0.17992,{"date":472,"score":368,"percentile":473},"2025-12-09",0.18059,{"date":475,"score":368,"percentile":476},"2025-12-10",0.18121,{"date":478,"score":368,"percentile":479},"2025-12-11",0.18162,{"date":481,"score":368,"percentile":482},"2025-12-12",0.18196,{"date":484,"score":368,"percentile":485},"2025-12-13",0.18207,{"date":487,"score":368,"percentile":488},"2025-12-14",0.18156,{"date":490,"score":368,"percentile":491},"2025-12-15",0.18137,{"date":493,"score":368,"percentile":494},"2025-12-16",0.18171,{"date":496,"score":368,"percentile":497},"2025-12-17",0.18257,{"date":499,"score":368,"percentile":500},"2025-12-18",0.18345,{"date":502,"score":368,"percentile":503},"2025-12-19",0.1836,{"date":505,"score":368,"percentile":506},"2025-12-20",0.18342,{"date":508,"score":368,"percentile":509},"2025-12-21",0.18281,{"date":511,"score":368,"percentile":512},"2025-12-22",0.18235,{"date":514,"score":368,"percentile":515},"2025-12-23",0.18242,{"date":517,"score":368,"percentile":518},"2025-12-24",0.18276,{"date":520,"score":368,"percentile":521},"2025-12-25",0.18351,{"date":523,"score":368,"percentile":524},"2025-12-26",0.18337,{"date":526,"score":368,"percentile":527},"2025-12-27",0.18326,{"date":529,"score":368,"percentile":530},"2025-12-28",0.18295,{"date":532,"score":368,"percentile":533},"2025-12-29",0.18256,{"date":535,"score":368,"percentile":536},"2025-12-30",0.18267,{"date":538,"score":368,"percentile":539},"2025-12-31",0.18331,{"date":541,"score":368,"percentile":542},"2026-01-01",0.1843,{"date":544,"score":368,"percentile":545},"2026-01-02",0.18417,{"date":547,"score":368,"percentile":548},"2026-01-03",0.18395,{"date":550,"score":368,"percentile":551},"2026-01-04",0.18286,{"date":553,"score":368,"percentile":554},"2026-01-05",0.18254,{"date":556,"score":368,"percentile":557},"2026-01-06",0.1827,{"date":559,"score":368,"percentile":560},"2026-01-07",0.18305,{"date":562,"score":368,"percentile":563},"2026-01-08",0.18364,{"date":565,"score":368,"percentile":566},"2026-01-09",0.18365,{"date":568,"score":368,"percentile":569},"2026-01-10",0.1838,{"date":571,"score":368,"percentile":572},"2026-01-11",0.18347,{"date":574,"score":368,"percentile":575},"2026-01-12",0.18304,{"date":577,"score":368,"percentile":578},"2026-01-13",0.18282,{"date":580,"score":368,"percentile":581},"2026-01-14",0.18332,{"date":583,"score":368,"percentile":581},"2026-01-15",{"date":585,"score":368,"percentile":566},"2026-01-16",{"date":587,"score":368,"percentile":588},"2026-01-17",0.18373,{"date":590,"score":368,"percentile":591},"2026-01-18",0.18311,{"date":593,"score":368,"percentile":594},"2026-01-19",0.18245,{"date":596,"score":368,"percentile":597},"2026-01-20",0.18227,{"date":599,"score":368,"percentile":600},"2026-01-21",0.182,{"date":602,"score":368,"percentile":603},"2026-01-22",0.18126,{"date":605,"score":368,"percentile":606},"2026-01-23",0.18223,{"date":608,"score":368,"percentile":609},"2026-01-24",0.1825,{"date":611,"score":368,"percentile":612},"2026-01-25",0.18175,{"date":614,"score":368,"percentile":615},"2026-01-26",0.18081,{"date":617,"score":368,"percentile":384},"2026-01-27",{"date":619,"score":368,"percentile":620},"2026-01-28",0.18071,{"date":622,"score":368,"percentile":623},"2026-01-29",0.18046,{"date":625,"score":368,"percentile":626},"2026-01-30",0.1806,{"date":628,"score":368,"percentile":629},"2026-01-31",0.18072,{"date":631,"score":368,"percentile":632},"2026-02-01",0.18098,[634,639,641],{"source":296,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":635,"cvss_v4_0":9},{"baseScore":294,"baseSeverity":636,"vectorString":297,"impactScore":637,"exploitabilityScore":638},"HIGH",10,3.3,{"source":302,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":640,"cvss_v4_0":9},{"baseScore":294,"baseSeverity":636,"vectorString":297,"impactScore":637,"exploitabilityScore":638},{"source":303,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":642,"cvss_v4_0":9},{"baseScore":294,"baseSeverity":9,"vectorString":297,"impactScore":637,"exploitabilityScore":638},[644,657,665],{"ecosystem":645,"name":646,"vendor":647,"product":648,"cpe_part":9,"purl_type":649,"purl_namespace":647,"purl_name":648,"source":9,"versions":650},"Go","github.com/openshift/apiserver-library-go","github.com/openshift","apiserver-library-go","golang",[651],{"version":652,"is_range":653,"range_type":654,"version_start":9,"version_start_type":9,"version_end":655,"version_end_type":656,"fixed_in":9},"lt0_0_0_20230621",true,"semver","0.0.0-20230621","excluding",{"ecosystem":9,"name":658,"vendor":659,"product":658,"cpe_part":660,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":661},"kube-apiserver","kubernetes","a",[662],{"version":663,"is_range":290,"range_type":664,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na","cpe",{"ecosystem":9,"name":666,"vendor":667,"product":668,"cpe_part":660,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":669},"openshift container platform","redhat","openshift_container_platform",[670,672,674,676],{"version":671,"is_range":290,"range_type":664,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.10",{"version":673,"is_range":290,"range_type":664,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.11",{"version":675,"is_range":290,"range_type":664,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.12",{"version":677,"is_range":290,"range_type":664,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.13"]