Kubernetes API Server - YAML Parsing DoS (Billion Laughs)

The Kubernetes API server is vulnerable to a denial of service attack via YAML/JSON parsing. An attacker can send a specially crafted YAML/JSON payload that causes exponential memory consumption Billion Laughs attack, leading to API server crash. id: CVE-2019-11253 info: name: Kubernetes API Serv...

RHCOS 4 : OpenShift Container Platform 4.6.13 (RHSA-2021:0172)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0172 advisory. - kubernetes: Docker config secrets leaked when file is malformed and loglevel = 4 CVE-2020-8564 - golang: data race in certain...

RHCOS 4 : OpenShift Container Platform 4.3.31 openshift (RHSA-2020:3183)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3183 advisory. - kubernetes: node localhost services reachable via martian packets CVE-2020-8558 Note that Nessus has not tested for this issue but has...

RHCOS 4 : OpenShift Container Platform 4.3.10 openshift (RHSA-2020:1276)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1276 advisory. - kubernetes: crafted requests to kubelet API allow for memory exhaustion CVE-2020-8551 Note that Nessus has not tested for this issue but ha...

RHCOS 3 : Red Hat OpenShift Container Platform 3.11 atomic-openshift (RHSA-2019:1633)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:1633 advisory. - kubernetes: Incomplete fix for CVE-2019-1002101 allows for arbitrary file write via kubectl cp CVE-2019-11246 Note that Nessus has not test...

RHCOS 3 : OpenShift Container Platform 3.11 (RHSA-2018:3537)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3537 advisory. - kibana: Cross-site scripting via the source field formatter CVE-2018-3830 - nodejs: Out of bounds OOB write via UCS-2 encoding...

CVE-2026-27144 vulnerabilities

Vulnerabilities for packages: howdy-yall, grafana-operator, argo-rollouts, tailscale, mage, falco-no-driver, azurefile-csi, fuse-overlayfs-snapshotter, knative-eventing, newrelic-nri-statsd, prometheus, cadvisor, tetragon, opencost, gitleaks, http-echo, istio, prometheus-operator, nri-mssql,...

CVE-2026-27143 vulnerabilities

Vulnerabilities for packages: flux-source-controller-fips, kubernetes-csi-external-attacher, dataplaneapi-fips, aws-sigv4-proxy-fips, azurefile-csi-fips, cloud-provider-azure, traefik, dapr, http-echo, prometheus-fips, terraform, verticadb-operator, crossplane-function-go-templating-fips, harbor,...

PT-2026-32965

Name of the Vulnerable Software and Affected Versions mcp-server-kubernetes versions prior to 3.5.0 Description An argument injection issue exists in the port forward tool within the startPortForward function located in src/tools/port forward.ts. The tool constructs a kubectl command using string...

ROS-20260216-73-0013

Vulnerability in kubernetes related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to launch an ssrf attack...

Azure Linux 3.0 Security Update: kubernetes (CVE-2025-0426)

The version of kubernetes installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-0426 advisory. - A security issue was discovered in Kubernetes where a large number of container checkpoint requests made ...

AZL-72382 CVE-2025-13281 affecting package kubernetes for versions less than 1.30.10-18

A half-blind Server Side Request Forgery SSRF vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network including link-local ...

Kubernetes 安全漏洞

Kubernetes K8s is an open source system for automating the deployment, scaling, and management of containerized applications from Kubernetes Open Source. A security vulnerability exists in Kubernetes that stems from a server-side request forgery in Portworx StorageClass that could lead to...

Security Bulletin: Astronomer with IBM is vulnerable to object abuse due to Kubernetes (CVE-2025-5187)

Summary Kubernetes is used by Astronomer with IBM as part of service management functionality. Vulnerability Details CVEID:CVE-2025-5187 DESCRIPTION: A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node obje...

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a Node DOS vulnerability in Kubernetes [CVE-2025-0426]

Summary IBM Watson Speech Services Cartridge is vulnerable to a Node DOS vulnerability in Kubernetes, due to a flaw in the kubelet read-only HTTP endpoint CVE-2025-0426. Kubernetes is used in our speech-utilities. This vulnerabilitiy has been addressed. Please read the details for remediation...

EUVD-2018-1897

Malware in sbrugna...

EUVD-2021-0902

Malware in sbrugna...

EUVD-2019-2945

Malware in sbrugna...

EUVD-2022-4298

Malicious code in bioql PyPI...

EUVD-2024-39572

Malicious code in bioql PyPI...