CVE-2019-11243
rest.AnonymousClientConfig() does not remove the serviceaccount credentials from config created by rest.InClusterConfig()
Kubernetes Official CVE Feed
CVE-2019-11244
7 years 1 month ago
`kubectl --http-cache=<world-accessible dir>` creates world-writeable cached schema files
CVE-2019-1002100
7 years 2 months ago
json-patch requests can exhaust apiserver resources
CVE-2018-1002105
7 years 5 months ago
proxy request handling in kube-apiserver can leave vulnerable TCP connections
CVE-2018-1002101
7 years 10 months ago
smb mount security issue
CVE-2018-1002100
8 years 2 months ago
Kubectl copy doesn't check for paths outside of it's destination directory.
CVE-2017-1002102
8 years 2 months ago
atomic writer volume handling allows arbitrary file deletion in host filesystem
CVE-2017-1002101
8 years 2 months ago
subpath volume mount handling allows arbitrary file access in host filesystem
CVE-2017-1002100
8 years 11 months ago
Azure PV should be Private scope not Container scope
CVE-2017-1000056
9 years 2 months ago
PodSecurityPolicy admission plugin authorizes incorrectly
Checked
28 minutes 52 seconds ago
Auto-refreshing official CVE feed for Kubernetes repository
Kubernetes Official CVE Feed feed