CVE-2025-5187
1 minute read
This vulnerability is related to node permission boundaries. KLTS backports a restriction to block ownerReferences updates by node users.
Scope
Affected range in upstream metadata: <= k8s1.31.11 on supported lines.
CVSS scores
This vulnerability is rated as medium-risk with a CVSS score of 6.7.
Fixed by official
Fixed by KLTS
- v1.30.14-lts.1 CVE-2025-5187.patch
- v1.29.15-lts.1 CVE-2025-5187.patch
- v1.28.15-lts.2 CVE-2025-5187.patch
- v1.27.16-lts.1 CVE-2025-5187.patch
- v1.26.15-lts.1 CVE-2025-5187.patch
- v1.25.16-lts.1 CVE-2025-5187.patch
- v1.24.17-lts.1 CVE-2025-5187.patch
- v1.23.17-lts.1 CVE-2025-5187.patch
- v1.22.17-lts.1 CVE-2025-5187.patch
- v1.21.14-lts.2 CVE-2025-5187.patch
- v1.20.15-lts.3 CVE-2025-5187.patch
- v1.19.16-lts.4 CVE-2025-5187.patch
- v1.18.20-lts.3 CVE-2025-5187.patch
- v1.17.17-lts.3 CVE-2025-5187.patch
- v1.16.15-lts.3 CVE-2025-5187.patch
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.
Last modified
April 15, 2026
: docs: sync recent kubernetes-lts releases and CVEs (5ee2b8f3)