A security issue was discovered in Kubernetes where a user may be able to redirect pod traffic to private networks on a Node. Kubernetes already prevents creation of Endpoint IPs in the localhost or link-local range, but the same validation was not performed on EndpointSlice IPs. https://github.com/kubernetes/kubernetes/issues/102106 CREATE(Triage):(User=admin) [CVE-2021-25737|https://nvd.nist.gov/vuln/detail/CVE-2021-25737]
