As mitigations to a report from 2019 and CVE-2020-8555, Kubernetes attempts to prevent proxied connections from accessing link-local or localhost networks when making user-driven connections to. Rated low severity (CVSS 2.2), this vulnerability is remotely exploitable. No vendor patch available.
Authentication Bypass
Kubernetes
NVD
GitHub
VulDB
CVSS 3.1
2.2
EPSS
0.1%