CVE-2025-0426

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Published Feb 13, 2025

CWE ID 400

Summary

CVE-2025-0426 is a newly identified vulnerability affecting Kubernetes. This issue permits an attacker to send a large number of container checkpoint requests to the unauthenticated kubelet read-only HTTP endpoint, leading to a Node Denial of Service (DoS). The repeated requests consume the Node's disk capacity, causing it to become unresponsive and potentially causing service disruptions. This vulnerability highlights the importance of securing Kubernetes endpoints and monitoring for excessive resource usage.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Kubernetes

Affected Vendors

Kubernetes

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2b8dmN
https://www.cve.org/CVERecord?id=CVE-2025-0426
https://nvd.nist.gov/vuln/detail/CVE-2025-0426

Back to Vulnerability Database