| Bug | Description |
|---|
| CVE-2025-4563 | A vulnerability exists in the NodeRestriction admission controller whe ... |
| CVE-2025-1767 | This CVE only affects Kubernetes clusters that utilize the in-tree git ... |
| CVE-2025-0426 | A security issue was discovered in Kubernetes where a large number of ... |
| CVE-2024-10220 | The Kubernetes kubelet component allows arbitrary command execution vi ... |
| CVE-2024-9042 | This CVE affects only Windows worker nodes. Your worker node is vulner ... |
| CVE-2024-7598 | A security issue was discovered in Kubernetes where a malicious or com ... |
| CVE-2024-5321 | A security issue was discovered in Kubernetes clusters with Windows no ... |
| CVE-2024-3177 | A security issue was discovered in Kubernetes where users may be able ... |
| CVE-2023-5528 | A security issue was discovered in Kubernetes where a user that can cr ... |
| CVE-2023-3955 | A security issue was discovered in Kubernetes where a user that can c ... |
| CVE-2023-3893 | A security issue was discovered in Kubernetes where a user that can c ... |
| CVE-2023-3676 | A security issue was discovered in Kubernetes where a user that can c ... |
| CVE-2023-2728 | Users may be able to launch containers that bypass the mountable secre ... |
| CVE-2023-2727 | Users may be able to launch containers using images that are restricte ... |
| CVE-2023-2431 | A security issue was discovered in Kubelet that allows pods to bypass ... |
| CVE-2022-3294 | Users may have access to secure endpoints in the control plane network ... |
| CVE-2022-3172 | A security issue was discovered in kube-apiserver that allows an aggr ... |
| CVE-2022-3162 | Users authorized to list or watch one type of namespaced custom resour ... |
| CVE-2021-25749 | Windows workloads can run as ContainerAdministrator even when those wo ... |
| CVE-2021-25741 | A security issue was discovered in Kubernetes where a user may be able ... |
| CVE-2021-25740 | A security issue was discovered with Kubernetes that could enable user ... |
| CVE-2021-25737 | A security issue was discovered in Kubernetes where a user may be able ... |
| CVE-2021-25736 | Kube-proxy on Windows can unintentionally forward traffic to local pr ... |
| CVE-2021-25735 | A security issue was discovered in kube-apiserver that could allow nod ... |
| CVE-2020-8566 | In Kubernetes clusters using Ceph RBD as a storage provisioner, with l ... |
| CVE-2020-8565 | In Kubernetes, if the logging level is set to at least 9, authorizatio ... |
| CVE-2020-8564 | In Kubernetes clusters using a logging level of at least 4, processing ... |
| CVE-2020-8563 | In Kubernetes clusters using VSphere as a cloud provider, with a loggi ... |
| CVE-2020-8562 | As mitigations to a report from 2019 and CVE-2020-8555, Kubernetes att ... |
| CVE-2020-8561 | A security issue was discovered in Kubernetes where actors that contro ... |
| CVE-2020-8559 | The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions pri ... |
| CVE-2020-8558 | The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17. ... |
| CVE-2020-8557 | The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17. ... |
| CVE-2020-8555 | The Kubernetes kube-controller-manager in versions v1.0-1.14, versions ... |
| CVE-2020-8554 | Kubernetes API server in all versions allow an attacker who is able to ... |
| CVE-2020-8552 | The Kubernetes API server component in versions prior to 1.15.9, 1.16. ... |
| CVE-2020-8551 | The Kubelet component in versions 1.15.0-1.15.9, 1.16.0-1.16.6, and 1. ... |
| CVE-2019-1002101 | The kubectl cp command allows copying files between containers and the ... |
| CVE-2019-1002100 | In all Kubernetes versions prior to v1.11.8, v1.12.6, and v1.13.4, use ... |
| CVE-2019-11254 | The Kubernetes API Server component in versions 1.1-1.14, and versions ... |
| CVE-2019-11253 | Improper input validation in the Kubernetes API server in versions v1. ... |
| CVE-2019-11252 | The Kubernetes kube-controller-manager in versions v1.0-v1.17 is vulne ... |
| CVE-2019-11251 | The Kubernetes kubectl cp command in versions 1.1-1.12, and versions p ... |
| CVE-2019-11250 | The Kubernetes client-go library logs request headers at verbosity lev ... |
| CVE-2019-11249 | The kubectl cp command allows copying files between containers and the ... |
| CVE-2019-11248 | The debugging endpoint /debug/pprof is exposed over the unauthenticate ... |
| CVE-2019-11247 | The Kubernetes kube-apiserver mistakenly allows access to a cluster-sc ... |
| CVE-2019-11246 | The kubectl cp command allows copying files between containers and the ... |
| CVE-2019-11245 | In kubelet v1.13.6 and v1.14.2, containers for pods that do not specif ... |
| CVE-2019-11244 | In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the ... |
| CVE-2019-11243 | In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientCon ... |
| CVE-2019-9946 | Cloud Native Computing Foundation (CNCF) CNI (Container Networking Int ... |
| CVE-2018-1002105 | In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, in ... |
| CVE-2018-1002102 | Improper validation of URL redirection in the Kubernetes API server in ... |
| CVE-2018-1002101 | In Kubernetes versions 1.9.0-1.9.9, 1.10.0-1.10.5, and 1.11.0-1.11.1, ... |
| CVE-2018-1002100 | In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to versio ... |
| CVE-2017-1002102 | In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to version ... |
| CVE-2017-1002101 | In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to version ... |
| CVE-2017-1002100 | Default access permissions for Persistent Volumes (PVs) created by the ... |
| CVE-2017-1000056 | Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation ... |
| CVE-2016-7075 | It was found that Kubernetes as used by Openshift Enterprise 3 did not ... |
| CVE-2016-1906 | Openshift allows remote attackers to gain privileges by updating a bui ... |
| CVE-2016-1905 | The API server in Kubernetes does not properly check admission control ... |
| CVE-2015-7528 | Kubernetes before 1.2.0-alpha.5 allows remote attackers to read arbitr ... |
| CVE-2015-5305 | Directory traversal vulnerability in Kubernetes, as used in Red Hat Op ... |