Go modules package
github.com/openkruise/kruise
pkg:golang/github.com/openkruise/kruise
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-24005 | — | >= 1.8.0, < 1.8.3 | 1.8.3 | Feb 25, 2026 | Kruise provides automated management of large-scale applications on Kubernetes. Prior to versions 1.8.3 and 1.7.5, PodProbeMarker allows defining custom probes with TCPSocket or HTTPGet handlers. The webhook validation does not restrict the Host field in these probe configuration | ||
| CVE-2023-30617 | — | >= 0.8.0, < 1.3.1 | 1.3.1 | Jan 3, 2024 | Kruise provides automated management of large-scale applications on Kubernetes. Starting in version 0.8.0 and prior to versions 1.3.1, 1.4.1, and 1.5.2, an attacker who has gained root privilege of the node that kruise-daemon run can leverage the kruise-daemon pod to list all sec |
- CVE-2026-24005Feb 25, 2026affected >= 1.8.0, < 1.8.3fixed 1.8.3
Kruise provides automated management of large-scale applications on Kubernetes. Prior to versions 1.8.3 and 1.7.5, PodProbeMarker allows defining custom probes with TCPSocket or HTTPGet handlers. The webhook validation does not restrict the Host field in these probe configuration
- CVE-2023-30617Jan 3, 2024affected >= 0.8.0, < 1.3.1fixed 1.3.1
Kruise provides automated management of large-scale applications on Kubernetes. Starting in version 0.8.0 and prior to versions 1.3.1, 1.4.1, and 1.5.2, an attacker who has gained root privilege of the node that kruise-daemon run can leverage the kruise-daemon pod to list all sec