Denial of service vulnerability in Kubernetes - CVE-2019-9514 (rpm)| ID: oval:org.secpod.oval:def:58191 | Date: (C)2019-10-10 (M)2024-04-17 |
| Class: VULNERABILITY | Family: unix |
The host is installed with Kubernetes version 1.15.x before 1.15.3, 1.14.x before 1.14.6 or 1.13.x before 1.13.10 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle the reset flood issue in HTTP/2 implementations. Successful exploitation allows attackers to cause a denial of service.
| Product: |
| kubeadm |
| kubectl |
| kubelet |
