Kubernetes Kubelet
7 CVEs affecting Kubernetes Kubelet. Latest disclosed: 2025-03-13. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-3955 | High | 8.8 | 2023-10-31 | A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes… |
CVE-2023-3676 | High | 8.8 | 2023-10-31 | A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes… |
CVE-2024-10220 | High | 8.1 | 2024-11-22 | The Kubernetes kubelet component allows arbitrary command execution via specially crafted gitRepo volumes.This issue affects kubelet: through 1.28.11, from 1.2… |
CVE-2023-5528 | High | 7.2 | 2023-11-14 | A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privil… |
CVE-2025-1767 | Medium | 6.5 | 2025-03-13 | This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the in-… |
CVE-2025-0426 | Medium | 6.2 | 2025-02-13 | A security issue was discovered in Kubernetes where a large number of container checkpoint requests made to the unauthenticated kubelet read-only HTTP endpoint… |
CVE-2024-9042 | Medium | 5.9 | 2025-03-13 | This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is running one of the affected versions listed below. |