GCVE - cpe:2.3:a:kubernetes:kubernetes:1.13.6:beta0:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:kubernetes:kubernetes:1.13.6:beta0:*:*:*:*:*:*

part: a version: 1.13.6 update: beta0

Vendor	Kubernetes (`3ee05930-9e42-51b2-ad52-30832f573b15`)
Product	Kubernetes (`1a2d2535-9ff1-599e-92b3-aa33ed592780`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:code.google/kubernetes`	purl2cpe	2026-06-01 10:13:27.614187
`pkg:github/kubernetes/kubernetes`	purl2cpe	2026-06-01 10:13:27.614189

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-9946`	vulnerable	2026-06-03 14:40:50.182376	Details available Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE- SERVICES chain. Because of this, the HostPort/portmap rule could match incoming traffic even if there were better fitting, more specific service definition rules like NodePorts later in the chain. The issue is fixed in CNI 0.7.5 and Kubernetes 1.11.9, 1.12.7, 1.13.5, and 1.14.0. Published: 2019-04-02T17:22:52.000Z Updated: 2024-08-04T22:10:08.508Z Open on db.gcve.eu Reference links https://github.com/containernetworking/plugins/pull/269#issuecomment-477683272 https://security.netapp.com/advisory/ntap-20190416-0002/ https://access.redhat.com/errata/RHBA-2019:0862 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FCN66VYB3XS76SYH567SO7N3I254JOCT/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGOOWAELGH3F7OXRBPH3HCNZELNLXYTW/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-11248`	vulnerable	2026-06-03 14:39:32.552130	Kubernetes kubelet exposes /debug/pprof info on healthz port MEDIUM (6.5) The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for limited denial of service. Versions prior to 1.15.0, 1.14.4, 1.13.8, and 1.12.10 are affected. The issue is of medium severity, but not exposed by the default configuration. Published: 2019-08-29T00:26:08.867Z Updated: 2024-09-17T03:28:37.165Z Open on db.gcve.eu Reference links https://github.com/kubernetes/kubernetes/issues/81023 https://groups.google.com/d/msg/kubernetes-security-announce/pKELclHIov8/BEDtRELACQAJ https://security.netapp.com/advisory/ntap-20190919-0003/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Kubernetes 1.13.6 Beta 0

PURL mappings

Vulnerability references

Contribute