CVE-2025-13281Server-Side Request Forgery in Kubernetes

CWE-918Server-Side Request Forgery10 documents8 sources
Severity
5.8MEDIUMNVD
EPSS
0.0%
top 97.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
KubernetesK8s.io Kubernetes
Timeline
PublishedDec 14
Latest updateDec 16

Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:NExploitability: 1.3 | Impact: 4.0

Affected Packages3 packages

Gok8s.io/kubernetes1.33.0-alpha.01.33.6+2
Debiankubernetes/kubernetes< 1.20.5+really1.20.2-1+3
CVEListV5kubernetes/kubernetesv1.30.0v1.30.14+4

🔴Vulnerability Details

5
OSV
Half-blind Server Side Request Forgery in kube-controller-manager through in-tree Portworx StorageClass in k8s.io/kubernetes2025-12-16
OSV
kube-controller-manager is vulnerable to half-blind Server Side Request Forgery through in-tree Portworx StorageClass2025-12-15
GHSA
kube-controller-manager is vulnerable to half-blind Server Side Request Forgery through in-tree Portworx StorageClass2025-12-15
OSV
CVE-2025-13281: A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass2025-12-14
CVEList
Portworx Half-Blind SSRF in kube-controller-manager2025-12-14

📋Vendor Advisories

3
Red Hat
kube-controller-manager: Portworx Half-Blind SSRF in kube-controller-manager2025-12-14
Microsoft
Portworx Half-Blind SSRF in kube-controller-manager2025-12-09
Debian
CVE-2025-13281: kubernetes - A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-con...2025

🕵️Threat Intelligence

1
Wiz
CVE-2025-13281 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2025-13281 — Server-Side Request Forgery | cvebase