A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or link-local range, but the same validation was not performed on EndpointSlice IPs.
{ "nvd_published_at": "2021-09-06T12:15:00Z", "cwe_ids": [ "CWE-184", "CWE-601" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2021-09-07T18:59:14Z" }