CNNVD-202508-2031 Information

CNNVD ID

CNNVD-202508-2031

Related CVE

CVE-2025-55205

• CNNVD Published: 2025-08-18

Description (Chinese)

Capsule是Project Capsule开源的一个 Kubernetes 的多租户和基于策略的框架。 Capsule 0.10.3及之前版本存在安全漏洞，该漏洞源于命名空间标签注入漏洞，可能导致权限提升和跨租户资源访问。

Description (English)

Capsule is a multi-tenant and strategy-based framework for Kubernetes, a project Capsule open source. There is a security loophole in Capsule 0.10.3 and earlier versions, which stems from a hole in the namespace label, which may lead to increased access to rights and resources across tenants.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Project Capsule

Published

2025-08-18

Last Modified

2026-02-24

References

https://github.com/projectcapsule/capsule/security/advisories/GHSA-fcpm-6mxq-m5vv https://github.com/projectcapsule/capsule/commit/e1f47feade6e1695b2204407607d07c3b3994f6e https://nvd.nist.gov/vuln/detail/CVE-2025-55205

Patch

https://github.com/projectcapsule/capsule/releases