CVE-2025-59361

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Chaos Controller Manager (affected versions not specified)

Description The cleanIptables mutation is susceptible to OS command injection. This allows unauthenticated in-cluster attackers to potentially execute remote code across the cluster. Attackers may gain root access on Kubernetes nodes through exploitation of this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2025-59361

GHSA-2GCV-3QPF-C5QR

GO-2025-3949

OPENSUSE-SU-2025:15564-1

SUSE-SU-2025:03289-1

Affected Products

Chaos Controller Manager

CVE-2025-59361

Weakness Enumeration

Related Identifiers

Affected Products

References · 57