| CVE-2017-1000056 |
critical |
9.8 |
9.8 |
|
|
|
9y ago |
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object. |
| CVE-2021-25741 |
high |
— |
8.0 |
|
|
|
5y ago |
A security issue was discovered in Kubernetes where a user may be able to create a container with subpath volume mounts to access files & directories outside of the volume, including on the host file… |
| CVE-2015-5305 |
medium |
— |
6.4 |
|
|
|
11y ago |
Directory traversal vulnerability in Kubernetes, as used in Red Hat OpenShift Enterprise 3.0, allows attackers to write to arbitrary files via a crafted object type name, which is not properly handle… |
| CVE-2020-8561 |
medium |
— |
5.5 |
|
|
|
5y ago |
A security issue was discovered in Kubernetes where actors that control the responses of MutatingWebhookConfiguration or ValidatingWebhookConfiguration requests are able to redirect kube-apiserver re… |
| CVE-2021-25735 |
medium |
— |
5.5 |
|
|
|
5y ago |
A security issue was discovered in kube-apiserver that could allow node updates to bypass a Validating Admission Webhook. Clusters are only affected by this vulnerability if they run a Validating Adm… |
| CVE-2015-7561 |
low |
3.1 |
3.1 |
|
|
|
9y ago |
Kubernetes in OpenShift3 Access Control Misconfiguration in k8s.io/kubernetes |
| CVE-2025-4563 |
low |
— |
2.5 |
|
|
|
11mo ago |
A vulnerability exists in the NodeRestriction admission controller where nodes can bypass dynamic resource allocation authorization checks. When the DynamicResourceAllocation feature gate is enabled,… |
| CVE-2020-8562 |
low |
— |
2.5 |
|
|
|
4y ago |
As mitigations to a report from 2019 and CVE-2020-8555, Kubernetes attempts to prevent proxied connections from accessing link-local or localhost networks when making user-driven connections to Servi… |
| CVE-2021-25740 |
low |
— |
2.5 |
|
|
|
5y ago |
A security issue was discovered with Kubernetes that could enable users to send network traffic to locations they would otherwise not have access to via a confused deputy attack. |
| CVE-2021-25737 |
low |
— |
2.5 |
|
|
|
5y ago |
A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or … |