Kubernetes Minikube
By the Year
In 2024 there have been 0 vulnerabilities in Kubernetes Minikube . Last year Minikube had 1 security vulnerability published. Right now, Minikube is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 1 | 7.80 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 1 | 8.80 |
It may take a day or so for new Minikube vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Kubernetes Minikube Security Vulnerabilities
This vulnerability enables ssh access to minikube container using a default password.
CVE-2023-1944
7.8 - High
- May 24, 2023
This vulnerability enables ssh access to minikube container using a default password.
Use of Hard-coded Credentials
In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000
CVE-2018-1002103
8.8 - High
- December 05, 2018
In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000. In VM environments where the IP is easy to predict, the attacker can use DNS rebinding to indirectly make requests to the Kubernetes Dashboard, create a new Kubernetes Deployment running arbitrary code. If minikube mount is in use, the attacker could also directly access the host filesystem.
Session Riding
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Kubernetes Minikube or by Kubernetes? Click the Watch button to subscribe.
