All 3 CVE vulnerabilities found in capsule-proxy, with AI-generated Chinese analysis, references, and POCs.
Vendor: clastix
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-48312 | Authentication bypass using an empty token in capsule-proxy CWE-287 | 9.8 | Critical | 2023-11-24 |
| CVE-2023-46254 | Service accounts can see namespaces of other tenants in capsule-proxy CWE-200 | 4.3 | Medium | 2023-11-06 |
| CVE-2022-23652 | Privilege escalation using hop-by-hop Connection header CWE-287 | 8.8 | High | 2022-02-22 |
All 3 known CVE vulnerabilities affecting capsule-proxy with full Chinese analysis, references, and POCs where available.