Boletines de Vulnerabilidades

CVE-2023-5528

Información sobre el sistema
   
Software afectado AmazonWS

Descripción
Publication Date: 2023/11/14 11:30 AM PDT AWS is aware of CVE-2023-5528, an issue in Kubernetes. Amazon EKS optimized Windows AMIs are not affected by the issue because the Kubernetes local-storage storage class type is disabled on EKS Windows AMI. As a security best practice, we recommend that EKS customers update their configurations to launch new worker nodes from the latest AMI version. Customers using Managed node groups can upgrade their node groups by referring to the EKS documentation.

More info:

https://aws.amazon.com/security/security-bulletins/AWS-2023-012/

Identificadores estándar
Propiedad Valor
CVE CVE-2023-44487 and CVE-2023-5528.

Histórico de versiones
Versión Comentario Fecha

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT