Homepage

k3s vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the k3s package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
GHSA-v778-237x-gjrc

<1.31.3.1-r1
  • L
CVE-2024-45337

<1.31.3.1-r1
  • L
GHSA-px8v-pp82-rcvr

<1.31.3.1-r0
  • L
Insufficient Verification of Data Authenticity

<1.31.3.1-r0
  • L
Improper Handling of Exceptional Conditions

<1.31.2.1-r3
  • L
GHSA-29wx-vh33-7x7r

<1.31.2.1-r3
  • L
CVE-2024-45310

<1.31.0.1-r1
  • L
GHSA-jfvp-7x6p-h2pv

<1.31.0.1-r1
  • L
CVE-2024-34155

<1.30.4.1-r1
  • L
GHSA-j7vj-rw65-4v26

<1.30.4.1-r1
  • L
CVE-2024-34158

<1.30.4.1-r1
  • L
GHSA-crqm-pwhx-j97f

<1.30.4.1-r1
  • L
CVE-2024-34156

<1.30.4.1-r1
  • L
GHSA-8xfx-rj4p-23jm

<1.30.4.1-r1
  • L
GHSA-v23v-6jw2-98fq

<1.30.3.1-r0
  • L
CVE-2024-41110

<1.30.3.1-r0
  • L
CVE-2024-24791

<1.30.2-r1
  • L
GHSA-hw49-2p59-3mhj

<1.30.2-r1
  • L
GHSA-v6v8-xj6m-xwqh

<1.30.1-r2
  • M
Information Exposure Through Log Files

<1.30.1-r2
  • M
CVE-2024-24789

<1.30.1-r1
  • L
GHSA-236w-p7wf-5ph8

<1.30.1-r1
  • C
CVE-2024-24790

<1.30.1-r1
  • L
GHSA-49gw-vxvf-fc2g

<1.30.1-r1
  • L
GHSA-4v7x-pqxf-cx7m

<1.29.3-r4
  • L
CVE-2023-45288

<1.29.3-r4
  • L
CVE-2024-22189

<1.29.3-r3
  • L
GHSA-c33x-xqrf-c478

<1.29.3-r3
  • L
GHSA-xw73-rw38-6vjc

<1.29.2-r5
  • H
Origin Validation Error

<1.29.2-r5
  • L
CVE-2024-27304

<1.29.2-r3
  • L
GHSA-mrww-27vc-gghv

<1.29.2-r3
  • L
GHSA-7jwh-3vrq-q3m8

<1.29.2-r3
  • L
CVE-2024-24786

<1.29.2-r2
  • L
GHSA-8r3f-844c-mc37

<1.29.2-r2
  • L
GHSA-32ch-6x54-q4h9

<1.29.2-r1
  • L
GHSA-fgq5-q76c-gx78

<1.29.2-r1
  • L
CVE-2024-24784

<1.29.2-r1
  • L
CVE-2023-45290

<1.29.2-r1
  • L
GHSA-j6m3-gc37-6r6q

<1.29.2-r1
  • L
GHSA-rr6r-cfgf-gc6h

<1.29.2-r1
  • L
CVE-2023-45289

<1.29.2-r1
  • L
CVE-2024-24783

<1.29.2-r1
  • L
GHSA-3q2c-pvp5-3cqp

<1.29.2-r1
  • L
CVE-2024-24785

<1.29.2-r1
  • L
GHSA-xr7r-f8xq-vfvv

<1.29.0-r1
  • H
Exposure of Resource to Wrong Sphere

<1.29.0-r1
  • L
GHSA-45x7-px36-x8w8

<1.28.4-r0
  • M
Improper Validation of Integrity Check Value

<1.28.4-r0
  • L
GHSA-mr45-rx8q-wcm9

<1.28.3-r1
  • L
GHSA-2wrh-6pvc-2jm9

<1.28.2-r1
  • L
GHSA-4374-p667-p6c8

<1.28.2-r1
  • L
GHSA-rcjv-mgp8-qvmr

<1.28.2-r2
  • L
GHSA-m4hf-6vgr-75r2

<1.27.5-r0
  • L
GHSA-8pgv-569h-w5rw

<1.28.3-r2
  • L
GHSA-6xv5-86q9-7xr8

<1.28.3-r2
  • H
CVE-2023-47108

<1.28.3-r2
  • L
GHSA-jq35-85cj-fj4p

<1.28.3-r2
  • H
Use of Hard-coded Cryptographic Key

<1.28.3-r1
  • H
Allocation of Resources Without Limits or Throttling

<1.28.2-r2
  • H
Allocation of Resources Without Limits or Throttling

<1.28.2-r1
  • H
Allocation of Resources Without Limits or Throttling

<1.27.5-r0
  • M
Cross-site Scripting (XSS)

<1.28.2-r1