VYPR
Moderate severityNVD Advisory· Published Oct 30, 2023· Updated Jun 12, 2025

Windows kube-proxy LoadBalancer contention

CVE-2021-25736

Description

Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port (“spec.ports[*].port”) as a LoadBalancer Service when the LoadBalancer controller does not set the “status.loadBalancer.ingress[].ip” field. Clusters where the LoadBalancer controller sets the “status.loadBalancer.ingress[].ip” field are unaffected.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
k8s.io/kubernetesGo
< 1.211.21

Affected products

36

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.