9 matches found
CLEANSTART-2026-EA72772 Security fixes for CVE-2024-7598, CVE-2025-13281, CVE-2025-1767, CVE-2025-47911, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2025-61731, CVE-2025-61732, CVE-2025-68119, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, ghsa-4x4m-3c2p-qppc, ghsa-r6j8-c6r2-37rr applied in versions: 2.12.6-r0, 2.12.6-r1
Multiple security vulnerabilities affect the ip-masq-agent package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2025-13281 affecting package kubernetes for versions less than 1.28.4-21
CVE-2025-13281 affecting package kubernetes for versions less than 1.28.4-21. A patched version of the package is available...
CVE-2025-13281 vulnerabilities
Vulnerabilities for packages: node-feature-discovery, emissary, kubernetes-dns-node-cache, vcluster, kubernetes, kots, calico, kubernetes-csi-driver-hostpath, argo-cd, mesosphere-vsphere-csi, ip-masq-agent, blob-csi, argocd-image-updater, rancher-system-agent, kubernetes-csi-driver-nfs, nodetaint...
CVE-2025-13281 Portworx Half-Blind SSRF in kube-controller-manager
A half-blind Server Side Request Forgery SSRF vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network including link-local ...
OESA-2025-2819 kubernetes security update
Container cluster management. Security Fixes: A vulnerability was found in Kubernetes kube-controller-manager up to versions 1.30.14, 1.31.14, 1.32.9, 1.33.5 and 1.34.1. It has been classified as CWE-918 Server-Side Request Forgery. The web server receives a URL or similar request from an upstrea...
OESA-2025-2818 kubernetes security update
Container cluster management. Security Fixes: A vulnerability was found in Kubernetes kube-controller-manager up to versions 1.30.14, 1.31.14, 1.32.9, 1.33.5 and 1.34.1. It has been classified as CWE-918 Server-Side Request Forgery. The web server receives a URL or similar request from an upstrea...
OESA-2025-2816 kubernetes security update
Container cluster management. Security Fixes: A vulnerability was found in Kubernetes kube-controller-manager up to versions 1.30.14, 1.31.14, 1.32.9, 1.33.5 and 1.34.1. It has been classified as CWE-918 Server-Side Request Forgery. The web server receives a URL or similar request from an upstrea...
OESA-2025-2815 kubernetes security update
Container cluster management. Security Fixes: A vulnerability was found in Kubernetes kube-controller-manager up to versions 1.30.14, 1.31.14, 1.32.9, 1.33.5 and 1.34.1. It has been classified as CWE-918 Server-Side Request Forgery. The web server receives a URL or similar request from an upstrea...
CVE-2025-13281
creationtimestamp| type| source ---|---|--- 2025-12-01 16:37:57+00:00| seen| https://seclists.org/oss-sec/2025/q4/221 2025-12-01 18:15:05+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3m6wzun2hi52h 2025-12-02 13:56:03+00:00| seen|...