Some Kubernetes CVEs are about to look newly relevant, but the risk is not new. The Kubernetes Security Response Committee says it will update several older CVE records on June 1, 2026, because the records did not accurately show that the issues remain unfixed and affect all versions.
The practical effect is simple: vulnerability scanners may start flagging findings that were previously missed. That does not mean a fresh exploit campaign exists. It means the metadata is being reconciled with the real security state of the project.
What Kubernetes is changing#
The Kubernetes project says recent work on official Open Source Vulnerabilities files exposed discrepancies in older CVE records. Some records implied that a fixed version existed, or otherwise failed to represent the affected range correctly. For the cases discussed in the blog post, that was wrong.
The affected issues are not ordinary bugs waiting for a patch. Kubernetes describes them as architectural design trade-offs. Fixing them fully in code would break behavior that legitimate clusters and integrations rely on.
On June 1, 2026, the project plans to update the affected CVE records so they correctly show that all Kubernetes versions are affected. The post also notes that another unfixed CVE already has a correct “all versions” record, but will be updated to use a more standardized version number format.
That distinction matters. Security tools consume version ranges. If the range says a fixed version exists when no complete fix exists, scanners can produce false negatives. Administrators may think a cluster aged out of the risk when it did not.
This is a metadata correction, not a patch release. The operational burden stays with cluster owners.
The three persistent risks#
The Kubernetes post highlights three older vulnerabilities that remain unfixed by the project. The technical mechanics are best tracked in the linked GitHub issues, but the security pattern is clear in each case: Kubernetes allows behavior that is useful in real deployments and dangerous when delegated too broadly.
Admission webhook redirects#
One issue involves the kube-apiserver following HTTP redirects when it communicates with admission webhooks. If an actor can configure an AdmissionWebhookConfiguration, they may be able to redirect API server requests toward internal or private networks.
Kubernetes says restricting this behavior would break standard HTTP client behavior used by legitimate integrations. That makes this less like a missing bounds check and more like a trust-boundary problem: the power to configure webhooks is already sensitive, and redirect behavior expands what that power can reach.
The recommended mitigations are operational. Set the API server log level below 10 so response bodies are not logged. Disable dynamic profiling with --profiling=false to prevent unauthorized log-level changes.
API server proxy DNS race#
Another issue is a DNS time-of-check to time-of-use race in the API server proxy. The system validates an IP after DNS resolution, then performs another resolution for the actual connection. If an attacker can manipulate the resolution between those two moments, IP restrictions can be bypassed.
Kubernetes says a complete fix would require pinning resolved IPs. That sounds clean until it collides with split-horizon DNS, dynamic IP environments, and other deployment patterns that Kubernetes must support.
The advised mitigation is to use a local DNS caching resolver such as dnsmasq on API server nodes, and configure the API server to use it. The goal is to make the answer used for the check match the answer used for the connection.
Cross-namespace forwarding through Endpoints#
The third issue concerns Endpoints and EndpointSlice API objects. Because users can manually specify IP addresses, those objects can be used to point a LoadBalancer or Ingress toward backends in other namespaces.
Kubernetes calls this a design flaw, but it is also a feature many networking tools and operators depend on. Removing it outright would break real systems.
The mitigation is access control. Administrators should restrict write access to Endpoints and EndpointSlices. Kubernetes notes that since version 1.22, the RBAC authorization mode no longer includes those permissions in the default ClusterRoles. That helps new clusters created with Kubernetes v1.22 or later. It does not automatically clean up every upgraded cluster.
For clusters upgraded from older versions, administrators should audit and reconcile RBAC permissions manually.
Why scanner noise may increase#
The most visible result of the June 1 update may be scanner churn. Findings can appear because the CVE records now represent the true affected range. That is annoying, but it is better than a silent miss.
This is also a useful reminder about what CVE metadata can and cannot tell you. A scanner finding is not always a newly introduced risk. A clean scanner result is not proof that an architectural exposure has been removed. The quality of the underlying record matters.
In this case, Kubernetes is explicitly choosing accuracy over comfort. The old records made some risks easier to ignore. The updated records should make them harder to miss.
Administrators should not treat these as emergency patch tickets unless their environment gives untrusted users the relevant control-plane privileges. The better response is to map each CVE to actual trust boundaries: who can configure admission webhooks, who can use the API server proxy, and who can write Endpoints or EndpointSlices.
What administrators should check#
The Kubernetes guidance points to a defense-in-depth posture rather than a single upgrade step.
Practical checks:
- Review who can create or modify admission webhook configurations.
- Keep API server log level below 10, especially where sensitive response bodies could be exposed.
- Disable dynamic profiling with
--profiling=falseunless there is a clear operational need. - Deploy dnsmasq or a similar local caching resolver on control plane nodes for the API server DNS race condition.
- Audit RBAC roles for broad write access to Endpoints and EndpointSlices.
- Pay special attention to clusters upgraded from pre-1.22 Kubernetes, where older permissions may still exist.
- Test mitigations outside production before changing control-plane behavior.
The RBAC note is especially easy to miss. Kubernetes says the default ClusterRoles changed for clusters created with v1.22, but upgraded clusters can retain older permission shapes. If a scanner flags the Endpoints issue, the useful question is not only “what Kubernetes version is this?” It is “what permissions survived the upgrade path?”
What not to overclaim#
The blog post does not say these issues have new fixes. It does not claim new exploitation. It does not provide a new Kubernetes version that eliminates the risk.
It says the records were wrong or incomplete, and that the project is correcting them so security tools and administrators see the persistent exposure more clearly.
That is less dramatic than a new zero-day, but more important for long-lived infrastructure. Kubernetes clusters often carry years of upgrade history, RBAC drift, controller assumptions, and integration dependencies. Architectural CVEs live in that space. They are not resolved by waiting for a patch that the project says would break fundamental behavior.
The right response is narrow and concrete: validate whether your cluster grants the risky capabilities, apply the documented mitigations where relevant, and expect scanners to become louder after the CVE records are corrected.