Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

NVD
NVDadded 2026/02/25 7:43 p.m.8 views

CVE-2026-24005

Kruise provides automated management of large-scale applications on Kubernetes. Prior to versions 1.8.3 and 1.7.5, PodProbeMarker allows defining custom probes with TCPSocket or HTTPGet handlers. The webhook validation does not restrict the Host field in these probe configurations. Since...

7.6CVSS0.00285EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2026/02/25 6:53 p.m.3 views

CVE-2026-24005 OpenKruise PodProbeMarker is Vulnerable to SSRF via Unrestricted Host Field

Kruise provides automated management of large-scale applications on Kubernetes. Prior to versions 1.8.3 and 1.7.5, PodProbeMarker allows defining custom probes with TCPSocket or HTTPGet handlers. The webhook validation does not restrict the Host field in these probe configurations. Since...

6AI score0.00285EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/02/25 6:53 p.m.2 views

CVE-2026-24005

Kruise provides automated management of large-scale applications on Kubernetes. Prior to versions 1.8.3 and 1.7.5, PodProbeMarker allows defining custom probes with TCPSocket or HTTPGet handlers. The webhook validation does not restrict the Host field in these probe configurations. Since...

7.6CVSS5.9AI score0.00285EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2026/02/25 6:53 p.m.9 views

CVE-2026-24005

Technical details for CVE-2026-24005 are not publicly available in the provided documents. Monitor for updates.

7.6CVSS5.7AI score0.00285EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2026/02/25 6:53 p.m.3 views

CVE-2026-24005 OpenKruise PodProbeMarker is Vulnerable to SSRF via Unrestricted Host Field

Kruise provides automated management of large-scale applications on Kubernetes. Prior to versions 1.8.3 and 1.7.5, PodProbeMarker allows defining custom probes with TCPSocket or HTTPGet handlers. The webhook validation does not restrict the Host field in these probe configurations. Since...

5.8AI score0.00285EPSS
Exploits1References6
Github Security Blog
Github Security Blogadded 2026/02/25 6:30 p.m.6 views

OpenKruise PodProbeMarker is Vulnerable to SSRF via Unrestricted Host Field

Summary PodProbeMarker allows defining custom probes with TCPSocket or HTTPGet handlers. The webhook validation does not restrict the Host field in these probe configurations. Since kruise-daemon runs with hostNetwork=true, it executes probes from the node network namespace. An attacker with...

7.6CVSS5.8AI score0.00285EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologiesadded 2026/02/25 12:0 a.m.4 views

PT-2026-21979

Name of the Vulnerable Software and Affected Versions Kruise versions prior to 1.8.3 Kruise versions prior to 1.7.5 Description Kruise allows automated management of applications on Kubernetes. A flaw exists in the PodProbeMarker functionality where the webhook validation does not restrict the...

9.9CVSS5.5AI score0.22162EPSS
Exploits68References138
SUSE CVE
SUSE CVEadded 2023/02/15 4:1 a.m.5 views

SUSE CVE-2020-8558

The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services bound to 127.0.0.1 running on the node or in the node's network namespace. Such a service is generally...

5.4CVSS6.8AI score0.03597EPSS
Exploits5References3
OSV
OSVadded 2020/07/27 8:15 p.m.0 views

UBUNTU-CVE-2020-8558

The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services bound to 127.0.0.1 running on the node or in the node's network namespace. Such a service is generally...

8.8CVSS6.7AI score0.03597EPSS
Exploits5References2
OSV
OSVadded 2017/11/14 9:29 p.m.4 views

CVE-2017-3891

In BlackBerry QNX Software Development Platform SDP 6.6.0, an elevation of privilege vulnerability in the default configuration of the QNX SDP with QNet enabled on networks comprising two or more QNet nodes could allow an attacker to access local and remote files or take ownership of files on oth...

8.1CVSS5.9AI score0.01283EPSS
Exploits0References2
Rows per page
Query Builder