What is the CVSS score of CVE-2026-25538?

CVE-2026-25538 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Kubernetes are affected by CVE-2026-25538?

A HIGH severity vulnerability (CVE-2026-25538) affecting Devtron, an open-source Kubernetes integration platform, poses significant risk to organizations using this tool for container orchestration…. A patch is available.

Is there a public PoC exploit available for CVE-2026-25538?

Yes, a public proof-of-concept exploit is available for CVE-2026-25538. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-25538?

Within 24 hours: Identify all instances of Devtron in production and development environments and assess exposure. Within 7 days: Apply the available vendor patch to all affected Devtron instances and validate functionality post-patching. Within 30 days: Conduct a full audit of Devtron access logs and Kubernetes audit trails to identify any potential exploitation activity during the exposure window.

Kubernetes CVE-2026-25538

HIGH

Missing Authorization (CWE-862)

2026-02-04 security-advisories@github.com

GHSA-8wpc-j9q9-j5m2

Kubernetes Devtron Suse

8.8

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

8.8 HIGH

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

SUSE

8.7 HIGH

qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

PoC Detected

Feb 11, 2026 - 19:10 vuln.today

Public exploit code

Patch released

Feb 11, 2026 - 19:10 nvd

Patch available

CVE Published

Feb 04, 2026 - 22:15 nvd

HIGH 8.8

DescriptionGitHub Advisory

Devtron is an open source tool integration platform for Kubernetes. In version 2.0.0 and prior, a vulnerability exists in Devtron's Attributes API interface, allowing any authenticated user (including low-privileged CI/CD Developers) to obtain the global API Token signing key by accessing the /orchestrator/attributes?key=apiTokenSecret endpoint. After obtaining the key, attackers can forge JWT tokens for arbitrary user identities offline, thereby gaining complete control over the Devtron platform and laterally moving to the underlying Kubernetes cluster. This issue has been patched via commit d2b0d26.

AnalysisAI

Devtron is an open source tool integration platform for Kubernetes. [CVSS 8.8 HIGH]

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate as low-privileged CI/CD developer

Delivery

Access /orchestrator/attributes?key=apiTokenSecret endpoint

Exploit

Retrieve global API Token signing key

Execution

Forge arbitrary JWT tokens offline

Impact

Gain complete platform control and Kubernetes access

Access

Authenticate as low-privileged CI/CD developer

Delivery

Access /orchestrator/attributes?key=apiTokenSecret endpoint

Exploit

Retrieve global API Token signing key

Execution

Forge arbitrary JWT tokens offline

Impact

Gain complete platform control and Kubernetes access

Vulnerability AssessmentAI

Exploitation	Authenticated user account with CI/CD Developer or higher privileges on Devtron 2.0.0 and prior. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 8.8 (HIGH). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker (requires authentication) could exploit this vulnerability to compromise the affected system.
Remediation	A vendor patch is available — apply it immediately. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all instances of Devtron in production and development environments and assess exposure. …

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-50563 CRITICAL Act Now

9.9 Jun 10

Privilege escalation in Fission (Kubernetes-native serverless framework) prior to version 1.24.0 allows a tenant with Fu

CVE-2026-50566 CRITICAL Act Now

9.9 Jun 10

Privilege escalation in Fission prior to version 1.24.0 allows a tenant holding environments.fission.io create/update RB

CVE-2026-50545 CRITICAL Act Now

9.9 Jun 10

Privilege escalation in Fission prior to 1.24.0 allows an authenticated user with permission to create or modify Environ

CVE-2026-50564 CRITICAL Act Now

9.9 Jun 10

Privilege escalation in Fission (Kubernetes-native serverless framework) prior to version 1.24.0 allows a tenant with En

CVE-2026-49824 HIGH This Week

8.5 Jun 10

Cross-namespace access control bypass in Fission (Kubernetes-native serverless framework) prior to 1.24.0 allows an auth

Vendor StatusVendor

SUSE

Severity: High

CVE-2026-25538 vulnerability details – vuln.today

Back

Kubernetes CVE-2026-25538

Severity by source

CVSS VectorGitHub Advisory

Lifecycle Timeline

DescriptionGitHub Advisory

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

More from same product – last 7 days

Vendor StatusVendor

SUSE

Share

External POC / Exploit Code