{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-17T02:38:12.016","vulnerabilities":[{"cve":{"id":"CVE-2025-55205","sourceIdentifier":"security-advisories@github.com","published":"2025-08-18T17:15:30.117","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Capsule is a multi-tenancy and policy-based framework for Kubernetes. A namespace label injection vulnerability in Capsule v0.10.3 and earlier allows authenticated tenant users to inject arbitrary labels into system namespaces (kube-system, default, capsule-system), bypassing multi-tenant isolation and potentially accessing cross-tenant resources through TenantResource selectors. This vulnerability enables privilege escalation and violates the fundamental security boundaries that Capsule is designed to enforce. This vulnerability is fixed in 0.10.4."},{"lang":"es","value":"Capsule es un marco multiinquilino basado en políticas para Kubernetes. Una vulnerabilidad de inyección de etiquetas en espacios de nombres en Capsule v0.10.3 y versiones anteriores permite a los usuarios autenticados inyectar etiquetas arbitrarias en los espacios de nombres del sistema (kube-system, default, capsule-system), omitiendo el aislamiento multiinquilino y potencialmente accediendo a recursos entre inquilinos mediante selectores TenantResource. Esta vulnerabilidad permite la escalada de privilegios y viola los límites de seguridad fundamentales que Capsule está diseñado para aplicar. Esta vulnerabilidad se corrigió en la versión 0.10.4."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","baseScore":9.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.3,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/projectcapsule/capsule/commit/e1f47feade6e1695b2204407607d07c3b3994f6e","source":"security-advisories@github.com"},{"url":"https://github.com/projectcapsule/capsule/security/advisories/GHSA-fcpm-6mxq-m5vv","source":"security-advisories@github.com"}]}}]}