Kubernetes C# Client
Easy fix2 remedies
cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*
Easy fix2 remedies
- <= 17.0.13
Kubernetes C# Client Improper Certificate Validation Vulnerability Allowing Man-in-the-Middle Attacks
Vulnerability
Patched
A vulnerability in the Kubernetes C# client exists due to improper certificate validation. The client accepts well-formed certificates from any Certificate Authority (CA) without adequately verifying the trust chain. This flaw enables a malicious actor to present a fake certificate, potentially intercepting or manipulating communication with the Kubernetes API server. The vulnerability could lead to man-in-the-middle attacks and API impersonation.
Impact
Exploitation of this vulnerability could result in man-in-the-middle attacks, allowing interception or manipulation of communications with the Kubernetes API server, and impersonation of API users or services.
Remediation
Users can upgrade to version 17.0.14 or later of the Kubernetes C# client to address this vulnerability. Alternatively, CA certificates can be moved into the system trust store, but this may introduce new risks by allowing all processes on the system to trust certificates signed by that CA.
Added: Sep 16, 2025, 10:17 PM
Updated: Sep 16, 2025, 10:17 PM
Vulnerability Rating
Custom Algorithm
spread
7.3impact
2.5exploitability
6.0remediation
7.9relevance
0.5threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.