Kubernetes Kubelet vulnerabilities
7 known vulnerabilities affecting kubernetes/kubelet.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2024-9042MEDIUMCVSS 5.9v<=v1.29.12≥ v1.30, ≤ v1.30.8+2 more2025-03-13
CVE-2024-9042 [MEDIUM] CWE-20 CVE-2024-9042: This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is ru
This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is running one of the affected versions listed below.
cvelistv5nvd
CVE-2025-1767MEDIUMCVSS 6.5v<=v1.32.22025-03-13
CVE-2025-1767 [MEDIUM] CWE-20 CVE-2025-1767: This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repos
This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the in-tree gitRepo volume feature has been deprecated and will not receive security updates upstream, any cluster still using this feature remains vulnerable.
cvelistv5nvd
CVE-2025-0426MEDIUMCVSS 6.2≥ 1.32.0, ≤ 1.32.1≥ 1.31.0, ≤ 1.31.5+1 more2025-02-13
CVE-2025-0426 [MEDIUM] CWE-400 CVE-2025-0426: A security issue was discovered in Kubernetes where a large number of container checkpoint requests
A security issue was discovered in Kubernetes where a large number of container checkpoint requests made to the unauthenticated kubelet read-only HTTP endpoint may cause a Node Denial of Service by filling the Node's disk.
cvelistv5nvd
CVE-2024-10220HIGHCVSS 8.1≤ 1.28.11≥ 1.29.0, ≤ 1.29.6+1 more2024-11-22
CVE-2024-10220 [HIGH] CWE-22 CVE-2024-10220: The Kubernetes kubelet component allows arbitrary command execution via specially crafted gitRepo vo
The Kubernetes kubelet component allows arbitrary command execution via specially crafted gitRepo volumes.This issue affects kubelet: through 1.28.11, from 1.29.0 through 1.29.6, from 1.30.0 through 1.30.2.
cvelistv5nvd
CVE-2023-5528HIGHCVSS 8.8≥ v1.28.0, ≤ v1.28.3≥ v1.27.0, ≤ v1.27.7+2 more2023-11-14
CVE-2023-5528 [HIGH] CWE-20 CVE-2023-5528: A security issue was discovered in Kubernetes where a user that can create pods and persistent volum
A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
cvelistv5nvd
CVE-2023-3676HIGHCVSS 8.8vv1.28.0≥ v1.27.0, ≤ v1.27.4+3 more2023-10-31
CVE-2023-3676 [HIGH] CWE-20 CVE-2023-3676: A security issue was discovered in Kubernetes where a user
that can create pods on Windows nodes ma
A security issue was discovered in Kubernetes where a user
that can create pods on Windows nodes may be able to escalate to admin
privileges on those nodes. Kubernetes clusters are only affected if they
include Windows nodes.
cvelistv5nvd
CVE-2023-3955HIGHCVSS 8.8vv1.28.0≥ v1.27.0, ≤ v1.27.4+3 more2023-10-31
CVE-2023-3955 [HIGH] CWE-20 CVE-2023-3955: A security issue was discovered in Kubernetes where a user
that can create pods on Windows nodes ma
A security issue was discovered in Kubernetes where a user
that can create pods on Windows nodes may be able to escalate to admin
privileges on those nodes. Kubernetes clusters are only affected if they
include Windows nodes.
cvelistv5nvd