Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

kubernetes — Vulnerabilities & Security Advisories 102

Browse all 102 CVE security advisories affecting kubernetes. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Kubernetes serves as an open-source container orchestration platform, automating the deployment, scaling, and management of containerized applications across distributed clusters. Its complex architecture, involving numerous interacting components like the API server and kubelet, historically exposes it to diverse vulnerability classes. Common issues include remote code execution (RCE) via unauthenticated API endpoints, privilege escalation through misconfigured role-based access controls, and cross-site scripting (XSS) in the web dashboard. With over 100 recorded CVEs, the platform has faced significant security challenges, including incidents where attackers exploited weak authentication mechanisms to gain cluster-wide control. These vulnerabilities often stem from default configurations or delayed patching of underlying dependencies. Consequently, securing Kubernetes requires rigorous network segmentation, strict identity management, and continuous monitoring to mitigate risks associated with its intricate service mesh and dynamic workload scheduling capabilities.

Top products by kubernetes: Kubernetes ingress-nginx kubelet Kubernetes ingress-nginx Minikube Image Builder Kubernetes Secrets Store CSI Driver Kubernetes Java Client kube-apiserver CSI Driver for NFS Kubernetes CSharp Client secrets-store-sync-controller azure-file-csi-driver csi-proxy kops secrets-store-csi-driver aws-iam-authenticator CSI Snapshotter kubernetes-csi external-provisioner k8s.gcr.io/defaultbackend
CVE IDTitleCVSSSeverityPublished
CVE-2019-11245 kubelet-started container uid changes to root after first restart or if image is already pulled to the node — KubernetesCWE-703 7.8 -2019-08-29
CVE-2019-11243 Google Kubernetes 信任管理问题漏洞 — KubernetesCWE-271 8.1 -2019-04-22
CVE-2019-11244 kubectl creates world-writeable cached schema files — KubernetesCWE-524 5.5 -2019-04-22
CVE-2019-1002101 kubectl cp path traversal — Kubernetes 5.0 -2019-04-01
CVE-2019-1002100 Google Kubernetes 资源管理错误漏洞 — Kubernetes 6.5 -2019-04-01
CVE-2018-1002101 Google Kubernetes 命令注入漏洞 — Kubernetes 8.8 -2018-12-05
CVE-2018-1002103 Minikube 跨站请求伪造漏洞 — Minikube 9.6 -2018-12-05
CVE-2018-1002105 Google Kubernetes 权限许可和访问控制漏洞 — Kubernetes 9.8 -2018-12-05
CVE-2018-1002100 Google Kubernetes 安全漏洞 — Kubernetes 5.5 -2018-06-01
CVE-2017-1002101 Google Kubernetes 安全漏洞 — Kubernetes 8.2 -2018-03-13
CVE-2017-1002102 Google Kubernetes 安全漏洞 — Kubernetes 5.3 -2018-03-13
CVE-2017-1002100 Google Kubernetes 安全漏洞 — Kubernetes 6.5 -2017-09-14

This page lists every published CVE security advisory associated with kubernetes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.