CVE-2021-4178

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-4178
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4178.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-4178
Aliases
Downstream
Related
Published
2022-08-24T16:15:09.770Z
Modified
2026-03-15T22:43:14.639815Z
Severity
  • 6.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A arbitrary code execution flaw was found in the Fabric 8 Kubernetes client affecting versions 5.0.0-beta-1 and above. Due to an improperly configured YAML parsing, this will allow a local and privileged attacker to supply malicious YAML.

References

Affected packages

Git / github.com/fabric8io/kubernetes-client

Affected ranges

Type
GIT
Repo
https://github.com/fabric8io/kubernetes-client
Events
Introduced
f000ac9194723781fe8c9c24fcf5bf58498bb260
Fixed
0fa9285f03abe2c8d27a551dc0a0192f7a68b61e
Introduced
1a59e3bd1f5e63bf984f4f5bbdcbe376cf1704f1
Fixed
bdcb8f7bfd905523b8b58fd4e3330a02dd82cbfb
Introduced
faf7555f4f15681452ac3b42cce557e2e73ba7fa
Fixed
930aa487f848cdb7ba9c3cf9fe4904c1a843179f
Introduced
65d13c08b527495d658c94017c88de248110cb82
Fixed
11a73980ed4a49e5bbe3e729414760fb5c8bcadc
Introduced
5f5c8d3f76375ffc0bccfc3c4f417beaac031024
Fixed
23db4301478e74dac7154af70907bf98f2936ff5
Introduced
109675fc7f4d1fa84ea445ad369eb1261b76a0cf
Fixed
5e096210f7236a1c7d4954c35b8d410eb98730aa
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
c1f843ca0effb2212cae34f6bdc09b6b1c29b09f
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
c5c507f11f1883b12be84ed0bae26ca3c6b75aa9
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
d1aeb6dea11a64d7444096df40ec9c7f7ce76ded
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e9039a04503a140d60996bcae5931041f933ac89
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
7f200449450b942609115d3ab6ca7d4e2967b49b
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e9039a04503a140d60996bcae5931041f933ac89
Database specific 
{
    "versions": [
        {
            "introduced": "5.0.1"
        },
        {
            "fixed": "5.0.3"
        },
        {
            "introduced": "5.1.0"
        },
        {
            "fixed": "5.1.2"
        },
        {
            "introduced": "5.2.0"
        },
        {
            "fixed": "5.3.2"
        },
        {
            "introduced": "5.5.0"
        },
        {
            "fixed": "5.7.4"
        },
        {
            "introduced": "5.9.0"
        },
        {
            "fixed": "5.10.2"
        },
        {
            "introduced": "5.11.0"
        },
        {
            "fixed": "5.11.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.8.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.0.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0"
        }
    ]
}

Affected versions

v4.*
v4.13.2
v5.*
v5.0.1
v5.0.2

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4178.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "5.0.0-beta1"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "7.11"
            }
        ]
    }
]