| CVE-2021-25740 |
low |
3.1 |
3.1 |
|
|
|
5y ago |
A security issue was discovered with Kubernetes that could enable users to send network traffic to locations they would otherwise not have access to via a confused deputy attack. |
| CVE-2015-7561 |
low |
3.1 |
3.1 |
|
|
|
9y ago |
Kubernetes in OpenShift3 Access Control Misconfiguration in k8s.io/kubernetes |
| CVE-2025-4563 |
low |
— |
2.5 |
|
|
|
1y ago |
A vulnerability exists in the NodeRestriction admission controller where nodes can bypass dynamic resource allocation authorization checks. When the DynamicResourceAllocation feature gate is enabled,… |
| CVE-2021-25737 |
low |
— |
2.5 |
|
|
|
5y ago |
A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or … |
| CVE-2020-8562 |
low |
2.2 |
2.2 |
|
|
|
4y ago |
As mitigations to a report from 2019 and CVE-2020-8555, Kubernetes attempts to prevent proxied connections from accessing link-local or localhost networks when making user-driven connections to Servi… |
