Unsanitized Output Vulnerability in kubectl

Unsanitized Output Vulnerability in kubectl

CVE-2021-25743 · LOW Severity

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N

kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as Events.

Learn more about our Web Application Penetration Testing UK.