Kubernetes Vulnerability Announcements

Kubernetes Vulnerability Announcements - CVE Feed https://deploy-preview-45268--kubernetes-io-main-staging.netlify.app/docs/reference/issues-security/official-cve-feed/ Auto-refreshing official CVE feed for Kubernetes repository Hugo -- gohugo.io en-US The Kubernetes Authors Fri, 13 Feb 2026 13:01:17 +0000 CVE-2025-15566 https://github.com/kubernetes/kubernetes/issues/136789 Fri, 06 Feb 2026 02:54:24 +0000 https://www.cve.org/cverecord?id=CVE-2025-15566 ingress-nginx auth-proxy-set-headers nginx configuration injection CVE-2026-24514 https://github.com/kubernetes/kubernetes/issues/136680 Mon, 02 Feb 2026 03:06:14 +0000 https://www.cve.org/cverecord?id=CVE-2026-24514 ingress-nginx Admission Controller denial of service CVE-2026-24513 https://github.com/kubernetes/kubernetes/issues/136679 Mon, 02 Feb 2026 03:06:04 +0000 https://www.cve.org/cverecord?id=CVE-2026-24513 ingress-nginx auth-url protection bypass CVE-2026-24512 https://github.com/kubernetes/kubernetes/issues/136678 Mon, 02 Feb 2026 03:05:54 +0000 https://www.cve.org/cverecord?id=CVE-2026-24512 ingress-nginx rules.http.paths.path nginx configuration injection CVE-2026-1580 https://github.com/kubernetes/kubernetes/issues/136677 Mon, 02 Feb 2026 03:05:43 +0000 https://www.cve.org/cverecord?id=CVE-2026-1580 ingress-nginx auth-method nginx configuration injection CVE-2025-14269 https://github.com/kubernetes/kubernetes/issues/135798 Wed, 17 Dec 2025 19:23:10 +0000 https://www.cve.org/cverecord?id=CVE-2025-14269 Credential caching in Headlamp with Helm enabled CVE-2025-13281 https://github.com/kubernetes/kubernetes/issues/135525 Sun, 30 Nov 2025 23:08:37 +0000 https://www.cve.org/cverecord?id=CVE-2025-13281 Portworx Half-Blind SSRF in kube-controller-manager CVE-2025-9708 https://github.com/kubernetes/kubernetes/issues/134063 Mon, 15 Sep 2025 04:59:12 +0000 https://www.cve.org/cverecord?id=CVE-2025-9708 Kubernetes C# Client: improper certificate validation in custom CA mode may lead to man-in-the-middle attacks CVE-2025-7445 https://github.com/kubernetes/kubernetes/issues/133897 Thu, 04 Sep 2025 21:40:42 +0000 https://www.cve.org/cverecord?id=CVE-2025-7445 secrets-store-sync-controller discloses service account tokens in logs CVE-2025-5187 https://github.com/kubernetes/kubernetes/issues/133471 Mon, 11 Aug 2025 16:29:36 +0000 https://www.cve.org/cverecord?id=CVE-2025-5187 Nodes can delete themselves by adding an OwnerReference CVE-2025-7342 https://github.com/kubernetes/kubernetes/issues/133115 Mon, 21 Jul 2025 23:22:19 +0000 https://www.cve.org/cverecord?id=CVE-2025-7342 VM images built with Kubernetes Image Builder Nutanix or OVA providers use default credentials for Windows images if user did not override CVE-2025-4563 https://github.com/kubernetes/kubernetes/issues/132151 Fri, 06 Jun 2025 15:48:26 +0000 https://www.cve.org/cverecord?id=CVE-2025-4563 Nodes can bypass dynamic resource allocation authorization checks CVE-2025-1974 https://github.com/kubernetes/kubernetes/issues/131009 Sun, 23 Mar 2025 17:38:57 +0000 https://www.cve.org/cverecord?id=CVE-2025-1974 ingress-nginx admission controller RCE escalation CVE-2025-1098 https://github.com/kubernetes/kubernetes/issues/131008 Sun, 23 Mar 2025 17:38:53 +0000 https://www.cve.org/cverecord?id=CVE-2025-1098 ingress-nginx controller configuration injection via unsanitized mirror annotations CVE-2025-1097 https://github.com/kubernetes/kubernetes/issues/131007 Sun, 23 Mar 2025 17:38:49 +0000 https://www.cve.org/cverecord?id=CVE-2025-1097 ingress-nginx controller configuration injection via unsanitized auth-tls-match-cn annotation CVE-2025-24514 https://github.com/kubernetes/kubernetes/issues/131006 Sun, 23 Mar 2025 17:38:44 +0000 https://www.cve.org/cverecord?id=CVE-2025-24514 ingress-nginx controller configuration injection via unsanitized auth-url annotation CVE-2025-24513 https://github.com/kubernetes/kubernetes/issues/131005 Sun, 23 Mar 2025 17:38:28 +0000 https://www.cve.org/cverecord?id=CVE-2025-24513 ingress-nginx controller auth secret file path traversal vulnerability CVE-2025-1767 https://github.com/kubernetes/kubernetes/issues/130786 Thu, 13 Mar 2025 16:08:20 +0000 https://www.cve.org/cverecord?id=CVE-2025-1767 GitRepo Volume Inadvertent Local Repository Access CVE-2025-0426 https://github.com/kubernetes/kubernetes/issues/130016 Thu, 06 Feb 2025 20:03:44 +0000 https://www.cve.org/cverecord?id=CVE-2025-0426 Node Denial of Service via kubelet Checkpoint API CVE-2024-9042 https://github.com/kubernetes/kubernetes/issues/129654 Wed, 15 Jan 2025 22:28:29 +0000 https://www.cve.org/cverecord?id=CVE-2024-9042 Command Injection affecting Windows nodes via nodes/*/logs/query API CVE-2024-10220 https://github.com/kubernetes/kubernetes/issues/128885 Wed, 20 Nov 2024 15:30:44 +0000 https://www.cve.org/cverecord?id=CVE-2024-10220 Arbitrary command execution through gitRepo volume CVE-2024-9594 https://github.com/kubernetes/kubernetes/issues/128007 Fri, 11 Oct 2024 18:04:50 +0000 https://www.cve.org/cverecord?id=CVE-2024-9594 VM images built with Image Builder with some providers use default credentials during builds CVE-2024-9486 https://github.com/kubernetes/kubernetes/issues/128006 Fri, 11 Oct 2024 18:04:31 +0000 https://www.cve.org/cverecord?id=CVE-2024-9486 VM images built with Image Builder and Proxmox provider use default credentials CVE-2024-7646 https://github.com/kubernetes/kubernetes/issues/126744 Fri, 16 Aug 2024 16:10:31 +0000 https://www.cve.org/cverecord?id=CVE-2024-7646 Ingress-nginx Annotation Validation Bypass CVE-2024-7598 https://github.com/kubernetes/kubernetes/issues/126587 Wed, 07 Aug 2024 21:30:11 +0000 https://www.cve.org/cverecord?id=CVE-2024-7598 Network restriction bypass via race condition during namespace termination CVE-2024-5321 https://github.com/kubernetes/kubernetes/issues/126161 Wed, 17 Jul 2024 13:06:48 +0000 https://www.cve.org/cverecord?id=CVE-2024-5321 Incorrect permissions on Windows containers logs CVE-2024-3744 https://github.com/kubernetes/kubernetes/issues/124759 Wed, 08 May 2024 16:02:57 +0000 https://www.cve.org/cverecord?id=CVE-2024-3744 azure-file-csi-driver discloses service account tokens in logs CVE-2024-3177 https://github.com/kubernetes/kubernetes/issues/124336 Tue, 16 Apr 2024 14:04:09 +0000 https://www.cve.org/cverecord?id=CVE-2024-3177 Bypassing mountable secrets policy imposed by the ServiceAccount admission plugin CVE-2023-5528 https://github.com/kubernetes/kubernetes/issues/121879 Tue, 14 Nov 2023 15:54:16 +0000 https://www.cve.org/cverecord?id=CVE-2023-5528 Insufficient input sanitization in in-tree storage plugin leads to privilege escalation on Windows nodes CVE-2023-5044 https://github.com/kubernetes/kubernetes/issues/126817 Wed, 25 Oct 2023 15:48:28 +0000 https://www.cve.org/cverecord?id=CVE-2023-5044 Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation CVE-2023-5043 https://github.com/kubernetes/kubernetes/issues/126816 Wed, 25 Oct 2023 15:48:20 +0000 https://www.cve.org/cverecord?id=CVE-2023-5043 Ingress nginx annotation injection causes arbitrary command execution CVE-2022-4886 https://github.com/kubernetes/kubernetes/issues/126815 Wed, 25 Oct 2023 15:48:08 +0000 https://www.cve.org/cverecord?id=CVE-2022-4886 ingress-nginx path sanitization can be bypassed CVE-2023-3955 https://github.com/kubernetes/kubernetes/issues/119595 Wed, 26 Jul 2023 15:30:50 +0000 https://www.cve.org/cverecord?id=CVE-2023-3955 Insufficient input sanitization on Windows nodes leads to privilege escalation CVE-2023-3893 https://github.com/kubernetes/kubernetes/issues/119594 Wed, 26 Jul 2023 15:30:26 +0000 https://www.cve.org/cverecord?id=CVE-2023-3893 Insufficient input sanitization on kubernetes-csi-proxy leads to privilege escalation CVE-2023-3676 https://github.com/kubernetes/kubernetes/issues/119339 Fri, 14 Jul 2023 18:27:48 +0000 https://www.cve.org/cverecord?id=CVE-2023-3676 Insufficient input sanitization on Windows nodes leads to privilege escalation CVE-2023-2431 https://github.com/kubernetes/kubernetes/issues/118690 Thu, 15 Jun 2023 14:42:32 +0000 https://www.cve.org/cverecord?id=CVE-2023-2431 Bypass of seccomp profile enforcement CVE-2023-2728 https://github.com/kubernetes/kubernetes/issues/118640 Tue, 13 Jun 2023 14:42:06 +0000 https://www.cve.org/cverecord?id=CVE-2023-2728 Bypassing policies imposed by the ImagePolicyWebhook and bypassing mountable secrets policy imposed by the ServiceAccount admission plugin CVE-2023-2727 https://github.com/kubernetes/kubernetes/issues/118640 Tue, 13 Jun 2023 14:42:06 +0000 https://www.cve.org/cverecord?id=CVE-2023-2727 Bypassing policies imposed by the ImagePolicyWebhook and bypassing mountable secrets policy imposed by the ServiceAccount admission plugin CVE-2023-2878 https://github.com/kubernetes/kubernetes/issues/118419 Fri, 02 Jun 2023 19:03:54 +0000 https://www.cve.org/cverecord?id=CVE-2023-2878 secrets-store-csi-driver discloses service account tokens in logs CVE-2022-3294 https://github.com/kubernetes/kubernetes/issues/113757 Tue, 08 Nov 2022 21:33:26 +0000 https://www.cve.org/cverecord?id=CVE-2022-3294 Node address isn't always verified when proxying CVE-2022-3162 https://github.com/kubernetes/kubernetes/issues/113756 Tue, 08 Nov 2022 21:33:07 +0000 https://www.cve.org/cverecord?id=CVE-2022-3162 Unauthorized read of Custom Resources CVE-2022-3172 https://github.com/kubernetes/kubernetes/issues/112513 Fri, 16 Sep 2022 13:14:50 +0000 https://www.cve.org/cverecord?id=CVE-2022-3172 Aggregated API server can cause clients to be redirected (SSRF) CVE-2021-25749 https://github.com/kubernetes/kubernetes/issues/112192 Thu, 01 Sep 2022 21:02:01 +0000 https://www.cve.org/cverecord?id=CVE-2021-25749 `runAsNonRoot` logic bypass for Windows containers CVE-2021-25748 https://github.com/kubernetes/kubernetes/issues/126814 Fri, 10 Jun 2022 16:01:41 +0000 https://www.cve.org/cverecord?id=CVE-2021-25748 Ingress-nginx `path` sanitization can be bypassed with newline character CVE-2021-25746 https://github.com/kubernetes/kubernetes/issues/126813 Fri, 22 Apr 2022 16:18:27 +0000 https://www.cve.org/cverecord?id=CVE-2021-25746 Ingress-nginx directive injection via annotations CVE-2021-25745 https://github.com/kubernetes/kubernetes/issues/126812 Fri, 22 Apr 2022 16:18:21 +0000 https://www.cve.org/cverecord?id=CVE-2021-25745 Ingress-nginx `path` can be pointed to service account token file CVE-2021-25742 https://github.com/kubernetes/kubernetes/issues/126811 Thu, 21 Oct 2021 16:08:21 +0000 https://www.cve.org/cverecord?id=CVE-2021-25742 Ingress-nginx custom snippets allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces CVE-2021-25741 https://github.com/kubernetes/kubernetes/issues/104980 Mon, 13 Sep 2021 20:58:56 +0000 https://www.cve.org/cverecord?id=CVE-2021-25741 Symlink Exchange Can Allow Host Filesystem Access CVE-2020-8561 https://github.com/kubernetes/kubernetes/issues/104720 Wed, 01 Sep 2021 20:18:50 +0000 https://www.cve.org/cverecord?id=CVE-2020-8561 Webhook redirect in kube-apiserver CVE-2021-25740 https://github.com/kubernetes/kubernetes/issues/103675 Wed, 14 Jul 2021 03:30:07 +0000 https://www.cve.org/cverecord?id=CVE-2021-25740 Endpoint & EndpointSlice permissions allow cross-Namespace forwarding CVE-2021-25737 https://github.com/kubernetes/kubernetes/issues/102106 Tue, 18 May 2021 19:14:27 +0000 https://www.cve.org/cverecord?id=CVE-2021-25737 Holes in EndpointSlice Validation Enable Host Network Hijack CVE-2020-8562 https://github.com/kubernetes/kubernetes/issues/101493 Mon, 26 Apr 2021 19:18:04 +0000 https://www.cve.org/cverecord?id=CVE-2020-8562 Bypass of Kubernetes API Server proxy TOCTOU CVE-2021-3121 https://github.com/kubernetes/kubernetes/issues/101435 Fri, 23 Apr 2021 18:07:32 +0000 https://www.cve.org/cverecord?id=CVE-2021-3121 Processes may panic upon receipt of malicious protobuf messages CVE-2021-25735 https://github.com/kubernetes/kubernetes/issues/100096 Wed, 10 Mar 2021 18:18:01 +0000 https://www.cve.org/cverecord?id=CVE-2021-25735 Validating Admission Webhook does not observe some previous fields CVE-2020-8554 https://github.com/kubernetes/kubernetes/issues/97076 Fri, 04 Dec 2020 20:02:15 +0000 https://www.cve.org/cverecord?id=CVE-2020-8554 Man in the middle using LoadBalancer or ExternalIPs CVE-2020-8566 https://github.com/kubernetes/kubernetes/issues/95624 Thu, 15 Oct 2020 22:07:53 +0000 https://www.cve.org/cverecord?id=CVE-2020-8566 Ceph RBD adminSecrets exposed in logs when loglevel >= 4 CVE-2020-8565 https://github.com/kubernetes/kubernetes/issues/95623 Thu, 15 Oct 2020 22:05:32 +0000 https://www.cve.org/cverecord?id=CVE-2020-8565 Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9 CVE-2020-8564 https://github.com/kubernetes/kubernetes/issues/95622 Thu, 15 Oct 2020 22:03:19 +0000 https://www.cve.org/cverecord?id=CVE-2020-8564 Docker config secrets leaked when file is malformed and log level >= 4 CVE-2020-8563 https://github.com/kubernetes/kubernetes/issues/95621 Thu, 15 Oct 2020 22:00:44 +0000 https://www.cve.org/cverecord?id=CVE-2020-8563 Secret leaks in kube-controller-manager when using vSphere provider CVE-2020-8557 https://github.com/kubernetes/kubernetes/issues/93032 Mon, 13 Jul 2020 18:39:08 +0000 https://www.cve.org/cverecord?id=CVE-2020-8557 Node disk DOS by writing to container /etc/hosts CVE-2020-8559 https://github.com/kubernetes/kubernetes/issues/92914 Wed, 08 Jul 2020 17:03:16 +0000 https://www.cve.org/cverecord?id=CVE-2020-8559 Privilege escalation from compromised node to cluster CVE-2020-8558 https://github.com/kubernetes/kubernetes/issues/92315 Fri, 19 Jun 2020 18:38:58 +0000 https://www.cve.org/cverecord?id=CVE-2020-8558 Node setting allows for neighboring hosts to bypass localhost boundary CVE-2020-8555 https://github.com/kubernetes/kubernetes/issues/91542 Thu, 28 May 2020 16:13:34 +0000 https://www.cve.org/cverecord?id=CVE-2020-8555 Half-Blind SSRF in kube-controller-manager CVE-2020-10749 https://github.com/kubernetes/kubernetes/issues/91507 Wed, 27 May 2020 19:32:29 +0000 https://www.cve.org/cverecord?id=CVE-2020-10749 IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements CVE-2019-11254 https://github.com/kubernetes/kubernetes/issues/89535 Thu, 26 Mar 2020 18:55:26 +0000 https://www.cve.org/cverecord?id=CVE-2019-11254 kube-apiserver Denial of Service vulnerability from malicious YAML payloads CVE-2020-8552 https://github.com/kubernetes/kubernetes/issues/89378 Mon, 23 Mar 2020 18:35:34 +0000 https://www.cve.org/cverecord?id=CVE-2020-8552 apiserver DoS (oom) CVE-2020-8551 https://github.com/kubernetes/kubernetes/issues/89377 Mon, 23 Mar 2020 18:34:40 +0000 https://www.cve.org/cverecord?id=CVE-2020-8551 Kubelet DoS via API CVE-2020-8553 https://github.com/kubernetes/kubernetes/issues/126818 Wed, 19 Feb 2020 19:00:32 +0000 https://www.cve.org/cverecord?id=CVE-2020-8553 ingress-nginx auth-type basic annotation vulnerability CVE-2019-11251 https://github.com/kubernetes/kubernetes/issues/87773 Mon, 03 Feb 2020 15:12:22 +0000 https://www.cve.org/cverecord?id=CVE-2019-11251 kubectl cp symlink vulnerability CVE-2018-1002102 https://github.com/kubernetes/kubernetes/issues/85867 Tue, 03 Dec 2019 22:58:37 +0000 https://www.cve.org/cverecord?id=CVE-2018-1002102 Unvalidated redirect CVE-2019-11255 https://github.com/kubernetes/kubernetes/issues/85233 Wed, 13 Nov 2019 20:57:31 +0000 https://www.cve.org/cverecord?id=CVE-2019-11255 CSI volume snapshot, cloning and resizing features can result in unauthorized volume data access or mutation CVE-2019-11253 https://github.com/kubernetes/kubernetes/issues/83253 Fri, 27 Sep 2019 16:53:31 +0000 https://www.cve.org/cverecord?id=CVE-2019-11253 Kubernetes API Server JSON/YAML parsing vulnerable to resource exhaustion attack CVE-2019-11250 https://github.com/kubernetes/kubernetes/issues/81114 Thu, 08 Aug 2019 02:03:04 +0000 https://www.cve.org/cverecord?id=CVE-2019-11250 Bearer tokens are revealed in logs (audit finding TOB-K8S-001) CVE-2019-11248 https://github.com/kubernetes/kubernetes/issues/81023 Tue, 06 Aug 2019 14:34:33 +0000 https://www.cve.org/cverecord?id=CVE-2019-11248 /debug/pprof exposed on kubelet's healthz port CVE-2019-11249 https://github.com/kubernetes/kubernetes/issues/80984 Mon, 05 Aug 2019 12:44:23 +0000 https://www.cve.org/cverecord?id=CVE-2019-11249 Incomplete fixes for CVE-2019-1002101 and CVE-2019-11246, kubectl cp potential directory traversal CVE-2019-11247 https://github.com/kubernetes/kubernetes/issues/80983 Mon, 05 Aug 2019 12:44:08 +0000 https://www.cve.org/cverecord?id=CVE-2019-11247 API server allows access to custom resources via wrong scope CVE-2019-11245 https://github.com/kubernetes/kubernetes/issues/78308 Fri, 24 May 2019 16:14:49 +0000 https://www.cve.org/cverecord?id=CVE-2019-11245 container uid changes to root after first restart or if image is already pulled to the node CVE-2019-11243 https://github.com/kubernetes/kubernetes/issues/76797 Thu, 18 Apr 2019 21:31:53 +0000 https://www.cve.org/cverecord?id=CVE-2019-11243 rest.AnonymousClientConfig() does not remove the serviceaccount credentials from config created by rest.InClusterConfig() CVE-2019-11244 https://github.com/kubernetes/kubernetes/issues/76676 Tue, 16 Apr 2019 20:14:25 +0000 https://www.cve.org/cverecord?id=CVE-2019-11244 `kubectl --http-cache=<world-accessible dir>` creates world-writeable cached schema files CVE-2019-1002100 https://github.com/kubernetes/kubernetes/issues/74534 Mon, 25 Feb 2019 19:39:09 +0000 https://www.cve.org/cverecord?id=CVE-2019-1002100 json-patch requests can exhaust apiserver resources CVE-2018-1002105 https://github.com/kubernetes/kubernetes/issues/71411 Mon, 26 Nov 2018 11:07:36 +0000 https://www.cve.org/cverecord?id=CVE-2018-1002105 proxy request handling in kube-apiserver can leave vulnerable TCP connections CVE-2018-1002101 https://github.com/kubernetes/kubernetes/issues/65750 Tue, 03 Jul 2018 08:06:15 +0000 https://www.cve.org/cverecord?id=CVE-2018-1002101 smb mount security issue CVE-2018-1002100 https://github.com/kubernetes/kubernetes/issues/61297 Fri, 16 Mar 2018 19:24:46 +0000 https://www.cve.org/cverecord?id=CVE-2018-1002100 Kubectl copy doesn't check for paths outside of it's destination directory. CVE-2017-1002102 https://github.com/kubernetes/kubernetes/issues/60814 Mon, 05 Mar 2018 20:55:20 +0000 https://www.cve.org/cverecord?id=CVE-2017-1002102 atomic writer volume handling allows arbitrary file deletion in host filesystem CVE-2017-1002101 https://github.com/kubernetes/kubernetes/issues/60813 Mon, 05 Mar 2018 20:53:58 +0000 https://www.cve.org/cverecord?id=CVE-2017-1002101 subpath volume mount handling allows arbitrary file access in host filesystem CVE-2017-1002100 https://github.com/kubernetes/kubernetes/issues/47611 Thu, 15 Jun 2017 18:59:13 +0000 https://www.cve.org/cverecord?id=CVE-2017-1002100 Azure PV should be Private scope not Container scope CVE-2017-1000056 https://github.com/kubernetes/kubernetes/issues/43459 Tue, 21 Mar 2017 15:22:29 +0000 https://www.cve.org/cverecord?id=CVE-2017-1000056 PodSecurityPolicy admission plugin authorizes incorrectly