openshift-kube-apiserver vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the openshift-kube-apiserver package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Resource Exhaustion	*
M Information Exposure	*
L Resource Exhaustion	*
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
M Incorrect Default Permissions	*
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
L Incorrect Authorization	*
L Incorrect Authorization	*
M Allocation of Resources Without Limits or Throttling	*
M Improper Input Validation	*
M Improper Certificate Validation	*
M Out-of-bounds Read	*
H Excessive Platform Resource Consumption within a Loop	*
L CVE-2025-58186	*
M Server-Side Request Forgery (SSRF)	*
M Resource Exhaustion	*
M Missing Reference to Active Allocated Resource	*
L Improper Handling of Exceptional Conditions	*
H Incorrect Execution-Assigned Permissions	*
M Reachable Assertion	*
M Creation of Immutable Text Using String Concatenation	*
H Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Improper Output Neutralization for Logs	*
M Expected Behavior Violation	*
M Expected Behavior Violation	*
M Information Exposure	*
M Missing Authentication for Critical Function	*
M HTTP Request Smuggling	<0:4.19.0-202509011627.p2.g169f654.assembly.stream.el9
M HTTP Request Smuggling	<0:4.16.0-202507092005.p0.ga6b193c.assembly.stream.el9
M HTTP Request Smuggling	<0:4.18.0-202507051134.p0.g817e6dd.assembly.stream.el9
H Directory Traversal	<0:4.16.0-202406191607.p0.g58452d8.assembly.stream.el9
M Allocation of Resources Without Limits or Throttling	*
M Improper Input Validation	*
H Improper Validation of Integrity Check Value	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
M Resource Exhaustion	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Arbitrary Code Injection	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Misinterpretation of Input	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Improper Input Validation	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Improper Input Validation	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Information Exposure	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Incorrect Behavior Order	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Improper Validation of Integrity Check Value	<0:4.16.0-202406191607.p0.g58452d8.assembly.stream.el9
H Resource Exhaustion	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Arbitrary Code Injection	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Misinterpretation of Input	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Improper Input Validation	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Improper Input Validation	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Information Exposure	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9
H Incorrect Behavior Order	<0:4.16.0-202406170957.p0.g29c95f3.assembly.stream.el9

Vulnerability

Vulnerable Version

Allocation of Resources Without Limits or Throttling