Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:22105
HistoryDec 05, 2019 - 7:35 a.m.

Unvalidated Redirect

2019-12-0507:35:32
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5

0.001 Low

EPSS

Percentile

22.8%

github.com/kubernetes/kubernetes is vulnerable to unvalidated redirects. The vulnerability exists as an attacker-controlled Kubelet can return an arbitrary redirect when a Kubernetes API server with the StreamingProxyRedirects feature enabled AND without the ValidateProxyRedirects feature, responds to apiserver requests.