CVEs-PoC/2021/CVE-2021-25741.md

### [CVE-2021-25741](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25741)
![](https://img.shields.io/static/v1?label=Product&message=Kubernetes&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%3D%201.19.14%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-20%3A%20Improper%20Input%20Validation&color=brighgreen)

### Description

A security issue was discovered in Kubernetes where a user may be able to create a container with subpath volume mounts to access files & directories outside of the volume, including on the host filesystem.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/43622283/awesome-cloud-native-security
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Betep0k/CVE-2021-25741
- https://github.com/Metarget/awesome-cloud-native-security
- https://github.com/Metarget/metarget
- https://github.com/NaInSec/CVE-PoC-in-GitHub
- https://github.com/SYRTI/POC_to_review
- https://github.com/WhooAmii/POC_to_review
- https://github.com/adavarski/HomeLab-Proxmox-k8s-DevSecOps-playground
- https://github.com/adavarski/HomeLab-k8s-DevSecOps-playground
- https://github.com/atesemre/awesome-cloud-native-security
- https://github.com/brant-ruan/poc-demo
- https://github.com/cdxiaodong/CVE-2021-25741
- https://github.com/hacking-kubernetes/hacking-kubernetes.info
- https://github.com/intelliguy/intelliguy.github.com
- https://github.com/iridium-soda/container-escape-exploits
- https://github.com/k0mi-tg/CVE-POC
- https://github.com/khu-capstone-design/kubernetes-vulnerability-investigation
- https://github.com/magnologan/awesome-k8s-security
- https://github.com/manas3c/CVE-POC
- https://github.com/noirfate/k8s_debug
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/soosmile/POC
- https://github.com/trhacknon/Pocingit
- https://github.com/whoforget/CVE-POC
- https://github.com/youwizard/CVE-POC
- https://github.com/zecool/cve