Github.Com Rancher Local-Path-Provisioner vulnerabilities

1 known vulnerability affecting github.com/rancher_local-path-provisioner.

Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1

Vulnerabilities

Page 1 of 1
CVE-2025-62878CRITICAL≥ 0, < 0.0.342026-02-04
CVE-2025-62878 [CRITICAL] CWE-23 Local Path Provisioner vulnerable to Path Traversal via parameters.pathPattern Local Path Provisioner vulnerable to Path Traversal via parameters.pathPattern ### Impact A malicious user can manipulate the [parameters.pathPattern](https://github.com/rancher/local-path-provisioner/blob/d4f71b4b03a321e9f54be00808e9de42b8bfd35a/provisioner.go#L381) to create PersistentVolumes in arbitrary locations on the host node, potentially overwriting sensitive files or gainin
ghsaosv