Primary

Context

Intel Device Plugins for Kubernetes Improper Access Control Vulnerability Allowing Denial-of-Service

Vulnerability

A denial-of-service vulnerability has been identified in some Device Plugins for Kubernetes software maintained by Intel, prior to version 0.32.0. The issue arises from improper access control, which may allow a privileged user to disrupt services via local access.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition, causing disruptions in the Kubernetes environment by potentially allowing a privileged user to interfere with the normal operation of the device plugins.

Remediation

Users are advised to update Intel Device Plugins for Kubernetes to version 0.32.0 or later. The latest releases can be downloaded from the Intel Device Plugins for Kubernetes GitHub repository.

Added: Aug 12, 2025, 6:29 PM

Updated: Aug 12, 2025, 6:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intel Device Plugins for Kubernetes Improper Access Control Vulnerability Allowing Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating