Addressing critical Vulnerabilities reported in TKG 2.5 Version after a security scan.
Article ID: 394953
Updated On:
Products
VMware vSphere ESXi
Issue/Introduction
A third-party security scan on TKG 2.5 version reports below vulnerabilities with CVSS base score of 7.0 and above.
| CVE-2022-41716 |
| CVE-2024-0793 |
| CVE-2024-4032 |
| CVE-2024-45337 |
| CVE-2024-45339 |
| CVE-2024-45490 |
| CVE-2024-45491 |
| CVE-2024-45492 |
| CVE-2024-52533 |
| CVE-2024-6197 |
| CVE-2024-6232 |
Environment
VMware Tanzu Kubernetes Grid 2.5
kubernetes version 1.28
Resolution
CVE's mentioned above are expected to be fixed in the latest 2.5.3 version and above. Hence, we recommend to upgrade to TKG 2.5.3 version and then run the security scan again.
Feedback
Yes
No
Powered by
