Search for packages
| purl | pkg:maven/io.fabric8/kubernetes-client@4.5.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-y4mj-2jec-j3gg
Aliases: CVE-2021-20218 GHSA-jwh2-ffg4-48xc |
Improper Limitation of a Pathname to a Restricted Directory in Fabric8 Kubernetes Client A flaw was found in the fabric8 kubernetes-client in version 4.2.0 and after. This flaw allows a malicious pod/container to cause applications using the fabric8 kubernetes-client `copy` command to extract files outside the working path. The highest threat from this vulnerability is to integrity and system availability. This has been fixed in kubernetes-client-4.13.2 kubernetes-client-5.0.2 kubernetes-client-4.11.2 kubernetes-client-4.7.2 |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:18:56.950810+00:00 | GitLab Importer | Affected by | VCID-y4mj-2jec-j3gg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.fabric8/kubernetes-client/CVE-2021-20218.yml | 38.4.0 |
| 2026-04-11T22:31:13.811042+00:00 | GitLab Importer | Affected by | VCID-y4mj-2jec-j3gg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.fabric8/kubernetes-client/CVE-2021-20218.yml | 38.3.0 |
| 2026-04-02T22:42:36.713466+00:00 | GitLab Importer | Affected by | VCID-y4mj-2jec-j3gg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.fabric8/kubernetes-client/CVE-2021-20218.yml | 38.1.0 |
| 2026-04-01T17:00:17.982750+00:00 | GitLab Importer | Affected by | VCID-y4mj-2jec-j3gg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.fabric8/kubernetes-client/CVE-2021-20218.yml | 38.0.0 |