CVE-2023-1943

HIGH

kOps <GCE/GCP Provider - Privilege Escalation

Title source: llm

Privilege Escalation in kOps using GCE/GCP Provider in Gossip Mode.

Core 2

Core References

Issue Tracking issue-tracking

Mailing List mailing-list

CVSS v3 8.0

EPSS 0.0052

EPSS Percentile 39.6%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

CWE

CWE-250

Status published

Products (2)

k8s.io/kops 0 - 1.25.4Go

kubernetes/operations < 1.25.4

Published Oct 12, 2023

Tracked Since Feb 18, 2026