Vulnerabilities > Kubernetes > Java > 9.0.0

DATE CVE VULNERABILITY TITLE RISK
2021-10-11 CVE-2021-25738 Deserialization of Untrusted Data vulnerability in Kubernetes Java
Loading specially-crafted yaml with the Kubernetes Java Client library can lead to code execution.
local
low complexity
kubernetes CWE-502
6.7
6.7
2021-01-21 CVE-2020-8570 Path Traversal vulnerability in Kubernetes Java
Kubernetes Java client libraries in version 10.0.0 and versions prior to 9.0.1 allow writes to paths outside of the current directory when copying multiple files from a remote pod which sends a maliciously crafted archive.
network
low complexity
kubernetes CWE-22
critical
 9.1
9.1