CVE-2025-47284
- EPSS 0.09%
- Veröffentlicht 19.05.2025 18:52:57
- Zuletzt bearbeitet 04.09.2025 18:38:28
Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was discovered in the `gardenlet` component of Gardener prior to versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0. It could allow ...
CVE-2025-47283
- EPSS 0.16%
- Veröffentlicht 19.05.2025 18:46:11
- Zuletzt bearbeitet 06.02.2026 19:16:06
Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was discovered in Gardener prior to versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0 that could allow a user with administrative p...
CVE-2019-12494
- EPSS 0.31%
- Veröffentlicht 05.06.2019 19:29:00
- Zuletzt bearbeitet 21.11.2024 04:22:58
In Gardener before 0.20.0, incorrect access control in seed clusters allows information disclosure by sending HTTP GET requests from one's own shoot clusters to foreign shoot clusters. This occurs because traffic from shoot to seed via the VPN endpoi...
CVE-2018-2475
- EPSS 0.77%
- Veröffentlicht 09.10.2018 13:29:02
- Zuletzt bearbeitet 21.11.2024 04:03:53
Following the Gardener architecture, the Kubernetes apiserver of a Gardener managed shoot cluster resides in the corresponding seed cluster. Due to missing network isolation a shoot's apiserver can access services/endpoints in the private network of ...