K8S.Io Apimachinery vulnerabilities

CVE-2020-8559 [MEDIUM] CWE-601 Privilege Escalation in Kubernetes Privilege Escalation in Kubernetes The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.7 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.

CVE-2019-11253 [HIGH] CWE-20 Kubernetes apimachinery packages vulnerable to unbounded recursion in JSON or YAML parsing Kubernetes apimachinery packages vulnerable to unbounded recursion in JSON or YAML parsing CVE-2019-11253 is a denial of service vulnerability in the kube-apiserver, allowing authorized users sending malicious YAML or JSON payloads to cause kube-apiserver to consume excessive CPU or memory, potentially crashing and becoming unavailable. When creating a ConfigMap object which