CVE-2025-7342
VM images built with Kubernetes Image Builder Nutanix or OVA providers use default credentials for Windows images if user did not override
Kubernetes Official CVE Feed
CVE-2025-4563
2 months ago
Nodes can bypass dynamic resource allocation authorization checks
CVE-2025-1974
4 months 2 weeks ago
ingress-nginx admission controller RCE escalation
CVE-2025-1098
4 months 2 weeks ago
ingress-nginx controller configuration injection via unsanitized mirror annotations
CVE-2025-1097
4 months 2 weeks ago
ingress-nginx controller configuration injection via unsanitized auth-tls-match-cn annotation
CVE-2025-24514
4 months 2 weeks ago
ingress-nginx controller configuration injection via unsanitized auth-url annotation
CVE-2025-24513
4 months 2 weeks ago
ingress-nginx controller auth secret file path traversal vulnerability
CVE-2025-1767
4 months 3 weeks ago
GitRepo Volume Inadvertent Local Repository Access
CVE-2025-0426
6 months ago
Node Denial of Service via kubelet Checkpoint API
CVE-2024-9042
6 months 3 weeks ago
Command Injection affecting Windows nodes via nodes/*/logs/query API
CVE-2024-10220
8 months 2 weeks ago
Arbitrary command execution through gitRepo volume
CVE-2024-9594
9 months 3 weeks ago
VM images built with Image Builder with some providers use default credentials during builds
CVE-2024-9486
9 months 3 weeks ago
VM images built with Image Builder and Proxmox provider use default credentials
CVE-2024-7646
11 months 3 weeks ago
Ingress-nginx Annotation Validation Bypass
CVE-2024-7598
11 months 4 weeks ago
Network restriction bypass via race condition during namespace termination
CVE-2024-5321
1 year ago
Incorrect permissions on Windows containers logs
CVE-2024-3744
1 year 2 months ago
azure-file-csi-driver discloses service account tokens in logs
CVE-2024-3177
1 year 3 months ago
Bypassing mountable secrets policy imposed by the ServiceAccount admission plugin
CVE-2023-5528
1 year 8 months ago
Insufficient input sanitization in in-tree storage plugin leads to privilege escalation on Windows nodes
CVE-2023-5044
1 year 9 months ago
Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation
Checked
2 days 15 hours ago
Auto-refreshing official CVE feed for Kubernetes repository
Kubernetes Official CVE Feed feed