Notes


CVE-2025-1767 - Another gitrepo issue

There’s a new Kubernetes security vulnerability that’s just been disclosed and I thought it was worth taking a look at it, as there’s a couple of interesting aspects to it. CVE-2025-1767 exists in the gitRepo volume type and can allow users who can create pods with gitRepo volumes to get access to any other git repository on the node where the pod is deployed. This is the second recent CVE related to gitRepo volumes, I covered the last one here. CVE-2025-1767 - Another gitrepo issue

March 14, 2025
#security#cve#kubernetes
For a bird born in captivity, flight is a mental illness.