{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T10:49:41.392","vulnerabilities":[{"cve":{"id":"CVE-2019-11255","sourceIdentifier":"jordan@liggitt.net","published":"2019-12-05T16:15:10.567","lastModified":"2024-11-21T04:20:48.960","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Improper input validation in Kubernetes CSI sidecar containers for external-provisioner (<v0.4.3, <v1.0.2, v1.1, <v1.2.2, <v1.3.1), external-snapshotter (<v0.4.2, <v1.0.2, v1.1, <1.2.2), and external-resizer (v0.1, v0.2) could result in unauthorized PersistentVolume data access or volume mutation during snapshot, restore from snapshot, cloning and resizing operations."},{"lang":"es","value":"Una comprobación de entrada inapropiada en contenedores sidecar de Kubernetes CSI para external-provisioner (versiones anteriores a v0.4.3, versiones anteriores a v1.0.2, v1.1, versiones anteriores a v1.2.2, versiones anteriores a v1.3.1), external-snapshotter (versiones anteriores a v0.4.2, versiones anteriores a v1. 0.2, v1.1, versiones anteriores a 1.2.2) y external-resizer (versiones v0.1, v0.2), podrían resultar en el acceso no autorizado a los datos PersistentVolume o la mutación del volumen durante una imagen instantánea, una restauración desde una imagen instantánea, la clonación y el cambio de tamaño."}],"metrics":{"cvssMetricV31":[{"source":"jordan@liggitt.net","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":0.5,"impactScore":4.2},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":5.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:N","baseScore":5.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"jordan@liggitt.net","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:kubernetes:external-provisioner:*:*:*:*:*:*:*:*","versionStartIncluding":"0.4.1","versionEndIncluding":"0.4.2","matchCriteriaId":"9A78A50B-5286-400D-A54A-49F1023D97D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:kubernetes:external-provisioner:*:*:*:*:*:*:*:*","versionStartIncluding":"1.0.0","versionEndIncluding":"1.0.1","matchCriteriaId":"A5CDEBDE-A093-4D75-A289-7F8D8F47C163"},{"vulnerable":true,"criteria":"cpe:2.3:a:kubernetes:external-provisioner:*:*:*:*:*:*:*:*","versionStartIncluding":"1.1.0","versionEndIncluding":"1.2.1","matchCriteriaId":"8CD30FBE-792A-42E3-9FAA-3122EBBEFC4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:kubernetes:external-provisioner:1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"686C1D64-DB77-451E-A3EC-9A415F7EAA2B"},{"vulnerable":true,"criteria":"cpe:2.3:a:kubernetes:external-resizer:*:*:*:*:*:*:*:*","versionStartIncluding":"0.1.0","versionEndIncluding":"0.2.0","matchCriteriaId":"920BC20F-8C59-4A34-AA0C-EBFD469C59C3"},{"vulnerable":true,"criteria":"cpe:2.3:a:kubernetes:external-snapshotter:*:*:*:*:*:*:*:*","versionStartIncluding":"0.4.0","versionEndIncluding":"0.4.1","matchCriteriaId":"B2DDFBDD-3AA1-40E4-B349-90D40C6E70F9"},{"vulnerable":true,"criteria":"cpe:2.3:a:kubernetes:external-snapshotter:*:*:*:*:*:*:*:*","versionStartIncluding":"1.0.0","versionEndIncluding":"1.0.1","matchCriteriaId":"F14DDAA3-4DD3-43D9-B934-4856C9A6B138"},{"vulnerable":true,"criteria":"cpe:2.3:a:kubernetes:external-snapshotter:*:*:*:*:*:*:*:*","versionStartIncluding":"1.1.0","versionEndIncluding":"1.2.1","matchCriteriaId":"0279E824-AF71-4EA1-8F41-3FAF256DC6EC"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:3.11:*:*:*:*:*:*:*","matchCriteriaId":"2F87326E-0B56-4356-A889-73D026DB1D4B"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*","matchCriteriaId":"064E7BDD-4EF0-4A0D-A38D-8C75BAFEDCEF"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openshift_container_platform:4.2:*:*:*:*:*:*:*","matchCriteriaId":"4C85A84D-A70F-4B02-9E5D-CD9660ABF048"}]}]}],"references":[{"url":"https://access.redhat.com/errata/RHSA-2019:4054","source":"jordan@liggitt.net","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:4096","source":"jordan@liggitt.net","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:4099","source":"jordan@liggitt.net","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:4225","source":"jordan@liggitt.net","tags":["Third Party Advisory"]},{"url":"https://github.com/kubernetes/kubernetes/issues/85233","source":"jordan@liggitt.net","tags":["Mitigation","Third Party Advisory"]},{"url":"https://groups.google.com/forum/#%21topic/kubernetes-security-announce/aXiYN0q4uIw","source":"jordan@liggitt.net"},{"url":"https://security.netapp.com/advisory/ntap-20200810-0003/","source":"jordan@liggitt.net"},{"url":"https://access.redhat.com/errata/RHSA-2019:4054","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:4096","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:4099","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:4225","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://github.com/kubernetes/kubernetes/issues/85233","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Third Party Advisory"]},{"url":"https://groups.google.com/forum/#%21topic/kubernetes-security-announce/aXiYN0q4uIw","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20200810-0003/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}