How severe is CVE-2025-62878?

CVE-2025-62878 has a CVSS v3 score of 9.9 (CRITICAL).

CVE-2025-62878

9.9CRITICAL

Veröffentlicht: 2/25/2026Aktualisiert: 2/25/2026

Beschreibung

A malicious user can manipulate the parameters.pathPattern to create PersistentVolumes in arbitrary locations on the host node, potentially overwriting sensitive files or gaining access to unintended directories.

KI-AnalyseKI-gestützt

Referenzen

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62878
https://github.com/advisories/GHSA-jr3w-9vfr-c746