CVE-2019-11248
/debug/pprof exposed on kubelet's healthz port
Kubernetes Official CVE Feed
CVE-2019-11249
6 years ago
Incomplete fixes for CVE-2019-1002101 and CVE-2019-11246, kubectl cp potential directory traversal
CVE-2019-11247
6 years ago
API server allows access to custom resources via wrong scope
CVE-2019-11245
6 years 2 months ago
container uid changes to root after first restart or if image is already pulled to the node
CVE-2019-11243
6 years 3 months ago
rest.AnonymousClientConfig() does not remove the serviceaccount credentials from config created by rest.InClusterConfig()
CVE-2019-11244
6 years 3 months ago
`kubectl:-http-cache=<world-accessible dir>` creates world-writeable cached schema files
CVE-2019-1002100
6 years 5 months ago
json-patch requests can exhaust apiserver resources
CVE-2018-1002105
6 years 8 months ago
proxy request handling in kube-apiserver can leave vulnerable TCP connections
CVE-2018-1002101
7 years 1 month ago
smb mount security issue
CVE-2018-1002100
7 years 4 months ago
Kubectl copy doesn't check for paths outside of it's destination directory.
CVE-2017-1002102
7 years 5 months ago
atomic writer volume handling allows arbitrary file deletion in host filesystem
CVE-2017-1002101
7 years 5 months ago
subpath volume mount handling allows arbitrary file access in host filesystem
CVE-2017-1002100
8 years 1 month ago
Azure PV should be Private scope not Container scope
CVE-2017-1000056
8 years 4 months ago
PodSecurityPolicy admission plugin authorizes incorrectly
Checked
2 days 15 hours ago
Auto-refreshing official CVE feed for Kubernetes repository
Kubernetes Official CVE Feed feed