kCTF is a Kubernetes-based infrastructure for capture the flag (CTF) competitions. Prior to version 1.6.0, the kctf cluster set-src-ip-ranges was broken and allowed traffic from any IP. The problem has been patched in v1.6.0. As a workaround, those who want to test challenges privately can mark them as `public: false` and use `kctf chal debug port-forward` to connect.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2022-06-13T15:40:10
Updated: 2024-08-03T07:03:40.255Z
Reserved: 2022-05-18T00:00:00
Link: CVE-2022-31055
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-06-13T16:15:08.487
Modified: 2023-07-21T17:08:44.237
Link: CVE-2022-31055
Redhat
No data.