Log

AVG-2007 edited at 11 Jun 2021 22:03:04
Advisory qualified
- Yes
+ No
AVG-2070 edited at 11 Jun 2021 21:59:46
Severity
- Unknown
+ Medium
CVE-2021-28213 edited at 11 Jun 2021 21:59:46
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Private key recovery
Description
+ Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks.
References
+ https://bugzilla.tianocore.org/show_bug.cgi?id=1866
Notes
AVG-2070 created at 11 Jun 2021 21:59:12
Packages
+ edk2-shell
Issues
+ CVE-2021-28213
Status
+ Not affected
Severity
+ Unknown
Affected
+ 202105-1
Fixed
Ticket
Advisory qualified
+ No
References
Notes
CVE-2021-28213 created at 11 Jun 2021 21:59:12
AVG-1847 edited at 11 Jun 2021 21:51:01
Status
- Vulnerable
+ Testing
Fixed
+ 16.0.1.u9-1
AVG-1921 edited at 11 Jun 2021 21:49:25
Status
- Vulnerable
+ Fixed
Fixed
+ 6.0.48-1
Notes
- Action Pack version 5.2.4.5 is bundled with Metasploit version 6.0.37.
+ Action Pack version 5.2.4.5 is bundled with Metasploit version 6.0.37, Action Pack version 5.2.6 is bundled with Metasploit version 6.0.48.
AVG-2069 edited at 11 Jun 2021 21:47:36
Status
- Vulnerable
+ Fixed
Fixed
+ 9.1.10-1
AVG-1663 edited at 11 Jun 2021 19:34:37
Status
- Vulnerable
+ Unknown
ASA-202106-30 edited at 11 Jun 2021 16:00:52
ASA-202106-29 edited at 11 Jun 2021 16:00:49
Workaround
- To mitigate this vulnerability without upgrading kube-apiserver, you can create a validating admission webhook that prevents EndpointSlices with endpoint addresses in the 127.0.0.0/8 and 169.254.0.0/16 ranges. If you have an existing admission policy mechanism (like OPA Gatekeeper) you can create a policy that enforces this restriction.
+ To mitigate this vulnerability without upgrading kube-apiserver, you
+ can create a validating admission webhook that prevents EndpointSlices
+ with endpoint addresses in the 127.0.0.0/8 and 169.254.0.0/16 ranges.
+ If you have an existing admission policy mechanism (like OPA
+ Gatekeeper) you can create a policy that enforces this restriction.
ASA-202106-28 edited at 11 Jun 2021 16:00:45