Количество 6
Количество 6
CVE-2025-64435
KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.7.0-beta.0, a logic flaw in the virt-controller allows an attacker to disrupt the control over a running VMI by creating a pod with the same labels as the legitimate virt-launcher pod associated with the VMI. This can mislead the virt-controller into associating the fake pod with the VMI, resulting in incorrect status updates and potentially causing a DoS (Denial-of-Service). This vulnerability is fixed in 1.7.0-beta.0.
CVE-2025-64435
KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.7.0-beta.0, a logic flaw in the virt-controller allows an attacker to disrupt the control over a running VMI by creating a pod with the same labels as the legitimate virt-launcher pod associated with the VMI. This can mislead the virt-controller into associating the fake pod with the VMI, resulting in incorrect status updates and potentially causing a DoS (Denial-of-Service). This vulnerability is fixed in 1.7.0-beta.0.
CVE-2025-64435
KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation
GHSA-9m94-w2vq-hcf9
KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation
SUSE-SU-2026:0479-1
Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container, virt-synchronization-controller-container
openSUSE-SU-2026:20281-1
Security update for kubevirt
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-64435 KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.7.0-beta.0, a logic flaw in the virt-controller allows an attacker to disrupt the control over a running VMI by creating a pod with the same labels as the legitimate virt-launcher pod associated with the VMI. This can mislead the virt-controller into associating the fake pod with the VMI, resulting in incorrect status updates and potentially causing a DoS (Denial-of-Service). This vulnerability is fixed in 1.7.0-beta.0. | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-64435 KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.7.0-beta.0, a logic flaw in the virt-controller allows an attacker to disrupt the control over a running VMI by creating a pod with the same labels as the legitimate virt-launcher pod associated with the VMI. This can mislead the virt-controller into associating the fake pod with the VMI, resulting in incorrect status updates and potentially causing a DoS (Denial-of-Service). This vulnerability is fixed in 1.7.0-beta.0. | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
 | CVE-2025-64435 KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation | CVSS3: 5.3 | 0% Низкий | 4 месяца назад |
| GHSA-9m94-w2vq-hcf9 KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
 | SUSE-SU-2026:0479-1 Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container, virt-synchronization-controller-container | около 2 месяцев назад | ||
| openSUSE-SU-2026:20281-1 Security update for kubevirt | около 1 месяца назад |
Уязвимостей на страницу