Rfranzke

#9216of 53,630
29.7Total CVSS
Vulnerabilities · 3
Critical
3
PT-2025-22064
9.9
2025-05-19
Unknown · Gardener External Dns Management · CVE-2025-47282
Name of the Vulnerable Software and Affected Versions: Gardener External DNS Management versions prior to 0.23.6 gardener/gardener-extension-shoot-dns-service extension versions <= v1.60.0 Description: A security issue was discovered in Gardener's External DNS Management that could allow a user with administrative privileges for a Gardener project or a shoot cluster to obtain control over the seed cluster. This issue affects all Gardener installations, regardless of the public cloud provider used. The affected component is `gardener/external-dns-management`. The `external-dns-management` component may also be deployed on the seeds by the `gardener/gardener-extension-shoot-dns-service` extension. Recommendations: For Gardener External DNS Management versions prior to 0.23.6, update to version 0.23.6 to fix the issue. For gardener/gardener-extension-shoot-dns-service extension versions <= v1.60.0, update to a version greater than v1.60.0 to fix the issue. As a temporary workaround, consider restricting access to the `gardener/external-dns-management` component and the `gardener/gardener-extension-shoot-dns-service` extension until a patch is applied.
PT-2025-22074
9.9
2025-05-19
Gardener · Gardener · CVE-2025-47283
Name of the Vulnerable Software and Affected Versions: Gardener versions prior to 1.116.4 Gardener versions prior to 1.117.5 Gardener versions prior to 1.118.2 Gardener versions prior to 1.119.0 Description: A security issue was discovered in Gardener that could allow a user with administrative privileges for a Gardener project to obtain control over the seed cluster(s) where their shoot clusters are managed. The affected component is `gardener/gardener` (`gardenlet`). This issue affects all Gardener installations, regardless of the public cloud provider(s) used for the seed clusters/shoot clusters. Recommendations: For versions prior to 1.116.4, update to version 1.116.4 or later. For versions prior to 1.117.5, update to version 1.117.5 or later. For versions prior to 1.118.2, update to version 1.118.2 or later. For versions prior to 1.119.0, update to version 1.119.0 or later.
PT-2025-22081
9.9
2025-05-19
Gardener · Gardener · CVE-2025-47284
Name of the Vulnerable Software and Affected Versions: Gardener versions prior to 1.116.4 Gardener versions prior to 1.117.5 Gardener versions prior to 1.118.2 Gardener versions prior to 1.119.0 Description: A security issue was discovered in the `gardenlet` component of Gardener. This issue could allow a user with administrative privileges for a Gardener project to obtain control over the seed cluster(s) where their shoot clusters are managed. The issue affects all Gardener installations where `gardener/gardener-extension-provider-gcp` is in use. Recommendations: For versions prior to 1.116.4, update to version 1.116.4 or later. For versions prior to 1.117.5, update to version 1.117.5 or later. For versions prior to 1.118.2, update to version 1.118.2 or later. For versions prior to 1.119.0, update to version 1.119.0 or later.