CVE-2025-5187

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-5187
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-5187.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-5187
Aliases
Downstream
Related
Published
2025-08-27T17:15:48Z
Modified
2025-09-18T17:59:27.974661Z
Summary
[none]
Details

A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently deleted, the given node object will be deleted via garbage collection.

References

Affected packages