CNNVD-202508-3202 Information

CNNVD ID

CNNVD-202508-3202

Related CVE

CVE-2025-5187

• CNNVD Published: 2025-08-27

Description (Chinese)

Kubernetes（K8s）是Kubernetes开源的一个开源系统，用于自动部署、扩展和管理容器化应用程序。 Kubernetes存在安全漏洞，该漏洞源于NodeRestriction准入控制器处理不当，可能导致节点对象删除。

Description (English)

Kubernetes (K8s) is an open-source system for the automatic deployment, extension and management of containerization applications in Kubernetes. There is a security loophole in Kubernetes, which stems from the inappropriate handling of the NodeRestraction access controller, which may lead to the removal of nodal objects.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Kubernetes

Published

2025-08-27

Last Modified

2026-02-24

References

https://groups.google.com/g/kubernetes-security-announce/c/znSNY7XCztE https://github.com/kubernetes/kubernetes/issues/133471 https://nvd.nist.gov/vuln/detail/CVE-2025-5187

Patch

https://github.com/kubernetes/kubernetes/releases