Vulnerabilities > CVE-2022-2835 - Unspecified vulnerability in Coredns.Io Coredns

CVSS 4.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

local

low complexity

coredns-io

NVD

Published: 2023-03-03

Updated: 2023-03-14

Summary

A flaw was found in coreDNS. This flaw allows a malicious user to reroute internal calls to some internal services that were accessed by the FQDN in a format of <service>.<namespace>.svc.

Vulnerable Configurations

Part	Description	Count
Application	Coredns.Io Coredns.Io Coredns -	1

References

https://bugzilla.redhat.com/show_bug.cgi?id=2118542