CVE-2025-1767 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2025-1767

This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the in-tree gitRepo volume feature has been deprecated and will not receive security updates upstream, any cluster still using this feature remains vulnerable.

Published: Mar 13, 2025
Updated: Jun 30, 2025
CVE: CVE-2025-1767
GHSA: GHSA-3wgm-2gw2-vh5m
Severity: Medium
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
k8s.io/kubernetes	-	1.32.3.x