Primary

Context

Gardener External DNS Management Privilege Escalation Vulnerability

Vulnerability

Patched

A critical vulnerability exists in Gardener External DNS Management versions prior to 0.23.6, allowing users with administrative rights in a Gardener project or a shoot cluster (including single namespace admin rights) to gain control over the seed cluster managing the shoot cluster. This issue affects all Gardener installations, regardless of the public cloud provider used for seed or shoot clusters. The vulnerability arises from improper management of administrative privileges, potentially leading to unauthorized control over the seed cluster.

Impact

Exploitation of this vulnerability could result in unauthorized control over the seed cluster, allowing for privilege escalation and management of resources in the affected environment.

Remediation

Users are advised to update Gardener External DNS Management to version 0.23.6 or later. If the 'gardener/gardener-extension-shoot-dns-service' extension is enabled, update to version 1.60.1 or later.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

7.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

7.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Gardener External DNS Management Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

gardener/external-dns-management

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating