Vulnerability Details CVE-2025-59376
feiskyer mcp-kubernetes-server through 0.1.11 does not consider chained commands in the implementation of --disable-write and --disable-delete, e.g., it allows a "kubectl version; kubectl delete pod" command because the first word (i.e., "version") is not a write or delete operation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.3%
CVSS Severity
CVSS v3 Score 3.7
References
Products affected by CVE-2025-59376
-
cpe:2.3:a:feisky:mcp-kubernetes-server:0.1.10
-
cpe:2.3:a:feisky:mcp-kubernetes-server:0.1.11
-
cpe:2.3:a:feisky:mcp-kubernetes-server:0.1.4
-
cpe:2.3:a:feisky:mcp-kubernetes-server:0.1.6
-
cpe:2.3:a:feisky:mcp-kubernetes-server:0.1.7
-
cpe:2.3:a:feisky:mcp-kubernetes-server:0.1.8
-
cpe:2.3:a:feisky:mcp-kubernetes-server:0.1.9