CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-30 00:49:28 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
b0e96c877abb080d7cf221c036336480ff266ccf
CVEs-PoC/2021/CVE-2021-25735.md
T
0xMarcio bc4580b779 Update CVE sources 2024-06-07 04:52
2024-06-07 04:52:01 +00:00

43 lines
2.1 KiB
Markdown
Raw Blame History

### [CVE-2021-25735](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25735)
![](https://img.shields.io/static/v1?label=Product&message=Kubernetes&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%3D%201.18.17%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-372%20Incomplete%20Internal%20State%20Distinction&color=brighgreen)
### Description
A security issue was discovered in kube-apiserver that could allow node updates to bypass a Validating Admission Webhook. Clusters are only affected by this vulnerability if they run a Validating Admission Webhook for Nodes that denies admission based at least partially on the old state of the Node object. Validating Admission Webhook does not observe some previous fields.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/43622283/awesome-cloud-native-security
- https://github.com/ARPSyndicate/cvemon
- https://github.com/EdgeSecurityTeam/Vulnerability
- https://github.com/Metarget/awesome-cloud-native-security
- https://github.com/NaInSec/CVE-PoC-in-GitHub
- https://github.com/SYRTI/POC_to_review
- https://github.com/WhooAmii/POC_to_review
- https://github.com/adavarski/HomeLab-Proxmox-k8s-DevSecOps-playground
- https://github.com/adavarski/HomeLab-k8s-DevSecOps-playground
- https://github.com/atesemre/awesome-cloud-native-security
- https://github.com/darryk10/CVE-2021-25735
- https://github.com/developer-guy/awesome-falco
- https://github.com/k0mi-tg/CVE-POC
- https://github.com/khu-capstone-design/kubernetes-vulnerability-investigation
- https://github.com/magnologan/awesome-k8s-security
- https://github.com/manas3c/CVE-POC
- https://github.com/noirfate/k8s_debug
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/reni2study/Cloud-Native-Security2
- https://github.com/soosmile/POC
- https://github.com/taielab/awesome-hacking-lists
- https://github.com/trhacknon/Pocingit
- https://github.com/tzwlhack/Vulnerability
- https://github.com/whoforget/CVE-POC
- https://github.com/youwizard/CVE-POC
- https://github.com/zecool/cve
Reference in New Issue View Git Blame Copy Permalink