CVE Details
Basic Information
| Title | CVE-2025-47282 |
|---|---|
| Type | cve |
| Published | 2025-05-19T18:15:30 |
| Last Seen | 2025-05-19T18:18:46 |
CVSS Information
| Base Score | 9.9 (CRITICAL) |
|---|---|
| Attack Vector | NETWORK |
| Attack Complexity | LOW |
| Privileges Required | LOW |
| User Interaction | NONE |
| Scope | CHANGED |
| Confidentiality Impact | HIGH |
| Integrity Impact | HIGH |
| Availability Impact | HIGH |
AI Analysis
| AI Description | A critical vulnerability in Gardener’s External DNS Management prior to version 0.23.6 could allow attackers to manipulate DNS entries, potentially leading to service hijacking or denial of service. This affects Kubernetes clusters using the External DNS Management feature. |
|---|---|
| AI Severity | Critical |
| Vendor | Gardener Community |
| Product | Gardener External DNS Management |
| Affected Version | <0.23.6 |
Additional Information
| CVE List | CVE-2025-47282 |
|---|---|
| CWE List | CWE-20 |
| Bulletin Family | cve |
Description
Gardener External DNS Management is an environment to manage external DNS entries for a kubernetes cluster. A security vulnerability was discovered in Gardener’s External DNS Management prior to version 0.23.6 that could…
CVSS Score Summary
Base Score: %!f(string=#) (CRITICAL)