0.001 Low
EPSS
Percentile
38.8%
flux2 and kustomize-controller are vulnerable to path traversal. Kustomization file path are not sanitized, allowing an attacker to use built-in features to send malicious kustomization.yaml to expose sensitive data.
github.com/advisories/GHSA-j77r-2fxf-5jrw
github.com/fluxcd/flux2/security/advisories/GHSA-j77r-2fxf-5jrw