279 matches found
CVE-2025-69902
A command injection vulnerability in the minimalwrapper.py component of kubectl-mcp-server v1.2.0 allows attackers to execute arbitrary commands via injecting arbitrary shell metacharacters...
PT-2026-25814
🔴 CVE-2025-69902 - Critical A command injection vulnerability in the minimal wrapper.py component of kubectl-mcp-server v1.2.0 allows attackers to execute arbitrary commands via injecting arbitrary shell metacharact... https://t.co/PU0OcLfG2G https://t.co/y3eBStKQr5...
CVE-2025-69902
CVE-2025-69902 affects kubectl-mcp-server (minimal_wrapper.py) v1.2.0 where an attacker can inject shell metacharacters to achieve command injection. The Red Hat/NVD/CVE entries confirm a vulnerability in minimal_wrapper.py with potential arbitrary command execution, rated critical (CVSSv3.1: AV:...
Rancher has downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)
Impact An issue was discovered in Rancher versions up to and including 2.5.15 and 2.6.6 where a flaw with authorization logic allows privilege escalation through cluster role template binding CRTB and project role template binding PRTB. This issue does not affect the local cluster, it affects onl...
GHSA-6X34-89P7-95WG Rancher has downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)
Impact An issue was discovered in Rancher versions up to and including 2.5.15 and 2.6.6 where a flaw with authorization logic allows privilege escalation through cluster role template binding CRTB and project role template binding PRTB. This issue does not affect the local cluster, it affects onl...
Rancher's Azure AD permission changes are not reflected on active sessions
A bug has been identified in which permission changes in Azure AD are not reflected to users while they are logged in the Rancher UI. This would cause the users to retain their previous permissions in Rancher, even if they change groups on Azure AD, for example, to a lower privileged group, or ar...
operator-poc
operator-poc // TODOuser: Add simple overview of use/purpose...
Command Injection
mcp-kubernetes-server is vulnerable to Command Injection. The vulnerability is due to the use of shell=True in the /mcp/kubectl endpoint, which allows an attacker to inject and execute arbitrary operating system commands...
[SECURITY] Fedora 42 Update: kubernetes1.33-1.33.6-1.fc42
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 42 Update: kubernetes1.34-1.34.2-1.fc42
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 41 Update: kubernetes1.34-1.34.2-1.fc41
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 43 Update: kubernetes1.33-1.33.6-1.fc43
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 41 Update: kubernetes1.32-1.32.10-2.fc41
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 42 Update: kubernetes1.31-1.31.14-1.fc42
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 41 Update: kubernetes1.31-1.31.14-1.fc41
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
EUVD-2019-2942
Malware in sbrugna...
EUVD-2025-29193
Malicious code in bioql PyPI...
EUVD-2023-1065
Malicious code in bioql PyPI...
EUVD-2022-0579
Malicious code in bioql PyPI...
EUVD-2022-2004
Malicious code in bioql PyPI...