Threats Tagged 'cve-2025-69902'
View all threats tagged with 'cve-2025-69902'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2025-69902'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2025-69902: n/aCVE-2025-69902 0 CVE-2025-69902 is a critical command injection vulnerability found in the minimal_wrapper.py component of kubectl-mcp-server version 1.2.0. This flaw allows unauthenticated remote attackers to execute arbitrary shell commands by injecting malicious shell metacharacters. The vulnerability has a CVSS score of 9.8, reflecting its high impact on confidentiality, integrity, and availability without requiring user interaction or privileges. Although no known exploits are currently reported in the wild, the ease of exploitation and the critical nature of the vulnerability make it a significant threat. Organizations using kubectl-mcp-server should prioritize patching or mitigating this issue to prevent potential compromise. The vulnerability is related to CWE-94, indicating improper control of code injection. Join the discussion | CVE Database V5 | 03/16/2026, 00:00:00 UTC Added: 03/16/2026, 20:58:23 UTC |
Showing 1 to 1 of 1 result