Security Advisory

CVE-2019-11254

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-01 20:30:15

Last updated 2024-09-16 23:16:55

Assigner kubernetes

State PUBLISHED

Description

The Kubernetes API Server component in versions 1.1-1.14, and versions prior to 1.15.10, 1.16.7 and 1.17.3 allows an authorized user who sends malicious YAML payloads to cause the kube-apiserver to consume excessive CPU cycles while parsing YAML.

← Browse all CVEs View on cve.org ↗