VulnerableCode Package Details - pkg:golang/k8s.io/kubernetes@1.11.2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:golang/k8s.io/kubernetes@1.11.2

Essentials
History (1)

purl	pkg:golang/k8s.io/kubernetes@1.11.2

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-eztq-5cu5-7yfd	Kubernetes Arbitrary Command Injection In Kubernetes versions 1.9.0-1.9.9, 1.10.0-1.10.5, and 1.11.0-1.11.1, user input was handled insecurely while setting up volume mounts on Windows nodes, which could lead to command line argument injection. ### Specific Go Packages Affected k8s.io/kubernetes/pkg/util/mount	CVE-2018-1002101 GHSA-wqwf-x5cj-rg56

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:06:22.917229+00:00	GithubOSV Importer	Fixing	VCID-eztq-5cu5-7yfd	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/02/GHSA-wqwf-x5cj-rg56/GHSA-wqwf-x5cj-rg56.json	38.0.0