Vulnerability in External-secrets

CVE-2025-55196

External Secrets Operator is a Kubernetes operator that integrates external secret management systems. From version 0.15.0 to before 0.19.2, a vulnerability was discovered where the List() calls for Kubernetes Secret and SecretStore resour…

EPSS: 0.003 (24.2th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References