cve/CVE-2021-25737.md at 8f32eec229df5ac6033987f6cf2822bfcb07c2e0

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or link-local range, but the same validation was not performed on EndpointSlice IPs.

POC

Reference

No PoCs from references.

Github

https://github.com/43622283/awesome-cloud-native-security
https://github.com/ARPSyndicate/cvemon
https://github.com/Metarget/awesome-cloud-native-security
https://github.com/adavarski/HomeLab-Proxmox-k8s-DevSecOps-playground
https://github.com/adavarski/HomeLab-k8s-DevSecOps-playground
https://github.com/atesemre/awesome-cloud-native-security
https://github.com/kajogo777/kubernetes-misconfigured
https://github.com/reni2study/Cloud-Native-Security2

1.2 KiB Raw Blame History

CVE-2021-25737

Description

POC

Reference

Github

1.2 KiB

Raw Blame History