Search for packages
| purl | pkg:maven/io.kubernetes/client-java@3.0.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-53j4-wdua-y7dv
Aliases: CVE-2020-8570 GHSA-cghx-9gcr-r42x |
Path Traversal Kubernetes Java client libraries allow writes to paths outside of the current directory when copying multiple files from a remote pod which sends a maliciously crafted archive. This can potentially overwrite any files on the system of the process executing the client code. |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
|
VCID-6mpy-82ss-ubbg
Aliases: CVE-2021-25738 GHSA-m8wh-mqgf-rr8g |
Improper Input Validation Loading specially-crafted yaml with the Kubernetes Java Client library can lead to code execution. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-06T01:01:42.562220+00:00 | GitLab Importer | Affected by | VCID-6mpy-82ss-ubbg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.kubernetes/client-java/CVE-2021-25738.yml | 38.6.0 |
| 2026-06-04T20:43:43.107870+00:00 | GitLab Importer | Affected by | VCID-53j4-wdua-y7dv | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.kubernetes/client-java/CVE-2020-8570.yml | 38.6.0 |