Monday, August 2, 2021

Red Hat OpenShift: CVE-2021-25737: kubernetes: Holes in EndpointSlice Validation Enable Host Network Hijack

A security issue was discovered in Kubernetes where an authorized user may be able to redirect traffic to private networks on a Node. An untrusted user could exploit this by creating or modifying EndpointSlices to point to localhost or link-local addresses.
  • linuxrpm-upgrade-openshift

  • References
  • CVE - 2021-25737
  • RHSA-2021:2437


    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore