CVE-2021-25740

Summary

A security issue was discovered with Kubernetes that could enable users to send network traffic to locations they would otherwise not have access to via a confused deputy attack.

Affected Software

VendorProductVersion RangeStatus
KubernetesKubernetes0 < *affected

Weaknesses

  • CWE-441: CWE-441 Unintended Proxy or Intermediary

ADP Enrichment

CVE Program Container

Additional References

References