In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, incorrect handling of error…

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. T…

Improper input validation in the Kubernetes API server in versions v1.0-1.12 and versions prior…

The kubectl cp command allows copying files between containers and the user machine. To copy fi…

A security issue was discovered in Kubernetes where a user that can create pods on Windows nod…

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4…

In all Kubernetes versions prior to v1.11.8, v1.12.6, and v1.13.4, users that are authorized to…

Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP servi…

A security issue was discovered in Kubernetes where a user may be able to create a container wi…

The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 a…

A security issue was discovered in kube-apiserver that could allow node updates to bypass a Val…

Openshift allows remote attackers to gain privileges by updating a build configuration that was…

In Kubernetes versions 1.9.0-1.9.9, 1.10.0-1.10.5, and 1.11.0-1.11.1, user input was handled in…

The kubectl cp command allows copying files between containers and the user machine. To copy fi…

The Kubernetes kube-controller-manager in versions v1.0-1.14, versions prior to v1.15.12, v1.16…

The kubectl cp command allows copying files between containers and the user machine. To copy fi…

The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18…

A security issue was discovered in Kubernetes where a user that can create pods and persistent …

A security issue was discovered in Kubernetes where a user that can create pods on Windows nod…

Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a netwo…

The Kubernetes kubelet component allows arbitrary command execution via specially crafted gitRe…

Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy…

The Kubernetes API server component in versions prior to 1.15.9, 1.16.0-1.16.6, and 1.17.0-1.17…

The Kubernetes API Server component in versions 1.1-1.14, and versions prior to 1.15.10, 1.16.7…

The Kubernetes kubectl cp command in versions 1.1-1.12, and versions prior to 1.13.11, 1.14.7, …

A security issue was discovered in Kubernetes where users may be able to launch containers that…

Users may be able to launch containers that bypass the mountable secrets policy enforced by the…

The Kubernetes kube-apiserver mistakenly allows access to a cluster-scoped custom resource if t…

Kubernetes before 1.2.0-alpha.5 allows remote attackers to read arbitrary pod logs via a contai…

A security issue was discovered in Kubernetes where actors that control the responses of Mutati…

A security issue was discovered with Kubernetes that could enable users to send network traffic…

The Kubernetes client-go library logs request headers at verbosity levels of 7 or higher. This …

Users may have access to secure endpoints in the control plane network. Kubernetes clusters are…

The API server in Kubernetes does not properly check admission control, which allows remote aut…

In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to version 1.9.6, the kubectl cp c…

It was found that Kubernetes as used by Openshift Enterprise 3 did not correctly validate X.509…

In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig() method returns a co…

This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it …

Default access permissions for Persistent Volumes (PVs) created by the Kubernetes Azure cloud p…

A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic …