VDB

CESS-2025-62878

CESS-2025-62878 PUBLISHED CVSS 9.9 CRITICAL

A malicious user can manipulate the parameters.pathPattern to create PersistentVolumes in arbitrary locations on the host node, potentially overwriting sensitive files or gaining access to unintended directories.

Risk Scores

CVSS 3.1
9.9
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Timeline

  • Feb 4, 2026 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›