CVE-2024-7598

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Kubernetes (affected versions not specified)

Description A security issue was discovered in Kubernetes where a malicious or compromised pod could bypass network restrictions enforced by network policies during namespace deletion. The order in which objects are deleted during namespace termination is not defined, and it is possible for network policies to be deleted before the pods that they protect. This can lead to a brief period in which the pods are running, but network policies that should apply to connections to and from the pods are not enforced.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

AZL-58953

AZL-58960

BDU:2026-02009

CLEANSTART-2026-AY21238

CLEANSTART-2026-IB84500

CLEANSTART-2026-KY75084

CLEANSTART-2026-SL86558

CLEANSTART-2026-TO88856

CLEANSTART-2026-YK54840

CVE-2024-7598

GHSA-R56H-J38W-HRQQ

GO-2025-3547

OPENSUSE-SU-2025:14937-1

Affected Products

Kubernetes

CVE-2024-7598

Weakness Enumeration

Related Identifiers

Affected Products

References · 145