VDB

CVE-2025-62878

CVE-2025-62878 PUBLISHED CVSS 9.899999618530273 CRITICAL

Local Path Provisioner vulnerable to Path Traversal via parameters.pathPattern

EPSS 0.03% · 9.2th percentile

Risk Scores

CVSS 3.1
9.899999618530273
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS Score
0.03%
9.2th percentile

Affected Products

VendorProductVersions
github.comrancher/local-path-provisioner0, 0
SUSERancher0, 0

Timeline

  • Feb 4, 2026 CVE Published
  • Feb 8, 2026 PoC Published
  • Feb 9, 2026 PoC Published
  • Feb 10, 2026 PoC Published
  • Feb 10, 2026 PoC Published
  • Feb 25, 2026 EPSS Score
  • Feb 25, 2026 PoC Published
  • Feb 25, 2026 PoC Published
  • Feb 27, 2026 CVE Updated
  • Feb 27, 2026 EPSS Score
  • Feb 28, 2026 EPSS Score
  • Mar 1, 2026 PoC Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›