How severe is CVE-2025-62878?

CVE-2025-62878 has a CVSS v3 score of 9.9 (CRITICAL).

CVE-2025-62878

9.9CRITICAL

Publicado: 2/25/2026Actualizado: 2/25/2026

Descripción

A malicious user can manipulate the parameters.pathPattern to create PersistentVolumes in arbitrary locations on the host node, potentially overwriting sensitive files or gaining access to unintended directories.

Análisis IAImpulsado por IA

Referencias

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62878
https://github.com/advisories/GHSA-jr3w-9vfr-c746