Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/08/29 3:5 a.m.4 views

CVE-2025-5187

A vulnerability was found in the kube-apiserver's NodeRestriction admission controller, where node users can delete their corresponding node object by setting their own OwnerReference to a cluster-scoped resource. This flaw allows an attacker to delete and recreate its node object, leading to the...

6.7CVSS6.3AI score0.00434EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/08/27 11:30 p.m.3 views

SUSE CVE-2025-5187

A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently delete...

6.7CVSS6.9AI score0.00434EPSS
Exploits0References3
OSV
OSV
added 2025/08/27 6:31 p.m.7 views

GHSA-4X4M-3C2P-QPPC Kubernetes Nodes can delete themselves by adding an OwnerReference

A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently delete...

6.7CVSS7AI score0.00434EPSS
Exploits0References5
OSV
OSV
added 2025/08/27 5:15 p.m.4 views

CVE-2025-5187

A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently delete...

6.7CVSS6.5AI score
Exploits0References2
Debian CVE
Debian CVE
added 2025/08/27 4:20 p.m.4 views

CVE-2025-5187

A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently delete...

6.7CVSS5.3AI score0.00434EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.4 views

SUSE CVE-2019-11247

The Kubernetes kube-apiserver mistakenly allows access to a cluster-scoped custom resource if the request is made as if the resource were namespaced. Authorizations for the resource accessed in this manner are enforced using roles and role bindings within the namespace, meaning that a user with...

5CVSS6.6AI score0.02092EPSS
Exploits0References4
Cloud Foundry
Cloud Foundry
added 2019/10/15 12:0 a.m.54 views

CVE-2019-11247: Kubernetes API Server Vulnerability | Cloud Foundry

Severity Medium Vendor Cloud Foundry Foundation Description The Kubernetes kube-apiserver mistakenly allows access to a cluster-scoped custom resource if the request is made as if the resource were namespaced. Authorizations for the resource accessed in this manner are enforced using roles and ro...

8.1CVSS6.2AI score0.02092EPSS
Exploits0
OSV
OSV
added 2019/08/29 1:15 a.m.2 views

DEBIAN-CVE-2019-11247

The Kubernetes kube-apiserver mistakenly allows access to a cluster-scoped custom resource if the request is made as if the resource were namespaced. Authorizations for the resource accessed in this manner are enforced using roles and role bindings within the namespace, meaning that a user with...

8.1CVSS6.3AI score0.02092EPSS
Exploits0References1
Rows per page
Query Builder