CVE-2025-9276P2CRITICALCVSS 9.8vcockroachdb/cockroach-k8s-request-cert:latest2025-09-02
CVE-2025-9276 [CRITICAL] CWE-258 CVE-2025-9276: Cockroach Labs cockroach-k8s-request-cert Empty Root Password Authentication Bypass Vulnerability. T
Cockroach Labs cockroach-k8s-request-cert Empty Root Password Authentication Bypass Vulnerability. This vulnerability could allow remote attackers to bypass authentication on systems that use the affected version of the Cockroach Labs cockroach-k8s-request-cert container image.
The specific flaw exists within the configuration of the system shadow
nvd