github.com/clastix/capsule-proxy

Go2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/clastix/capsule-proxypage 1 of 1

CVE-2022-23652HIGHCVSS 8.8EG 8.8✓ Fixed in 0.2.1
2022-02-22
capsule-proxy is a reverse proxy for Capsule Operator which provides multi-tenancy in Kubernetes. In versions prior to 0.2.1 an attacker with a proper authentication mechanism may use a malicious `Connection` header to start a privilege es…
CVE-2023-48312CRITICALCVSS 9.8EG 9.8✓ Fixed in 0.4.6
2023-11-24
capsule-proxy is a reverse proxy for the capsule operator project. Affected versions are subject to a privilege escalation vulnerability which is based on a missing check if the user is authenticated based on the `TokenReview` result. All …

Check whether github.com/clastix/capsule-proxy is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/clastix/capsule-proxy CVEs against the assets you own.

Start Free Scan →