15 matches found
Security Bulletin: IBM Maximo Application Suite uses k8s.io/kubernetes v1.33.1 which is vulnerable to CVE-2025-4563 and CVE-2025-5187
Summary IBM Maximo Application Suite uses k8s.io/kubernetes v1.33.1 which is vulnerable to CVE-2025-4563 and CVE-2025-5187. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2025-4563 DESCRIPTION: A vulnerability exists in the...
Security Bulletin: Astronomer with IBM is vulnerable to object abuse due to Kubernetes (CVE-2025-5187)
Summary Kubernetes is used by Astronomer with IBM as part of service management functionality. Vulnerability Details CVEID:CVE-2025-5187 DESCRIPTION: A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node obje...
Security Bulletin: IBM Cloud Kubernetes Service is affected by a Kubernetes API server security vulnerability (CVE-2025-5187)
Summary IBM Cloud Kubernetes Service is affected by a security vulnerability in the Kubernetes API server that may allow node users to delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. CVE-2025-5187. Vulnerability Details CVEID:...
govulncheck-vulndb-0.0.20250918T182144-1.1 on GA media (moderate)
govulncheck-vulndb-0.0.20250918T182144-1.1 on GA media Announcement ID: openSUSE-SU-2025:15566-1 Rating: moderate Cross-References: CVE-2025-47906 CVE-2025-5187 CVSS scores: CVE-2025-47906 SUSE : 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2025-47906 SUSE : 2.1...
OESA-2025-2318 kubernetes security update
Container cluster management. Security Fixes: A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference...
OESA-2025-2284 kubernetes security update
Container cluster management. Security Fixes: A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference...
OESA-2025-2283 kubernetes security update
Container cluster management. Security Fixes: A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference...
OESA-2025-2282 kubernetes security update
Container cluster management. Security Fixes: A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference...
CVE-2025-5187
A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently delete...
Fedora: Security Advisory (FEDORA-2025-409ed32016)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-51e8d5ec56)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-a1ec5a674c)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 42 : kubernetes1.33 (2025-409ed32016)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-409ed32016 advisory. - Update to release v1.33.4 - Resolves: rhbz2388412 - Fixes CVE-2025-5187: Nodes can delete themselves by adding an OwnerReference - Upstream fixes Tenable h...
Fedora 41 : kubernetes1.32 (2025-8f9b0ca4c7)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-8f9b0ca4c7 advisory. - Update to release v1.32.7 - Resolves: rhbz2388412 - Resolves: CVE-2025-5187: Nodes can delete themselves by adding an OwnerReference - Upstream fixes Tenab...
CVE-2025-5187
creationtimestamp| type| source ---|---|--- 2025-08-14 01:07:14+00:00| seen| https://bsky.app/profile/kubernetes.dev/post/3lwd5m3yc6j2i 2025-08-14 03:26:50+00:00| seen| https://bsky.app/profile/bluesky.awakari.com/post/3lwdfg26erm2s 2025-08-14 16:22:07+00:00| seen|...