DEBIAN-CVE-2021-25735

DEBIAN-CVE-2021-25735 PUBLISHED CVSS 6.5 MEDIUM

A security issue was discovered in kube-apiserver that could allow node updates to bypass a Validating Admission Webhook. Clusters are only affected by this vulnerability if they run a Validating Admission Webhook for Nodes that denies admission based at least partially on the old state of the Node object. Validating Admission Webhook does not observe some previous fields.

Risk Scores

CVSS v3.1

6.5

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

Affected Products

Vendor	Product	Versions
Debian:13	kubernetes	0, 0, 0
Debian:14	kubernetes	0, 0, 0
Debian:11	kubernetes	0, 0, 0
Debian:12	kubernetes	0, 0, 0

Timeline

Sep 6, 2021 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2021-25735 advisory

Open in Interactive Console →