Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
409
VMScore

CVE-2021-25738

Published: 11/10/2021 Updated: 28/10/2022
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 6.7 | Impact Score: 5.9 | Exploitability Score: 0.8
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Loading specially-crafted yaml with the Kubernetes Java Client library can lead to code execution.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

kubernetes java

Vendor Advisories

Red Hat: CVE-2021-25738
No description is available for this CVE ...

References

CWE-502https://groups.google.com/g/kubernetes-security-announce/c/K_pOK2WbAJkhttps://github.com/kubernetes-client/java/issues/1698http://www.openwall.com/lists/oss-security/2022/08/23/2https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2021-25738
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073CVE-2024-5496CVE-2024-5495XPath injectionbypassCVE-2024-30043CVE-2024-24919denial of serviceCVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook