JFrog Security Research disclosed four vulnerabilities in the Chaos Mesh chaos-engineering platform that can let attackers with in-cluster network access compromise Kubernetes environments, including three critical command-injection bugs and one authentication bypass. The issues, tracked as CVE-2025-59358, CVE-2025-59359, CVE-2025-59360, and CVE-2025-59361, affect Chaos Mesh deployments prior to 2.7.3 and stem from an exposed unauthenticated GraphQL server plus unsafe shell command construction in the cleanTcs, killProcesses, and cleanIptables mutations. JFrog said the default configuration can expose the GraphQL interface to any pod on the cluster, allowing even an unprivileged workload to reach vulnerable operations.
Researchers reported that the flaws can be chained to invoke fault injections, execute arbitrary commands on pods and nodes, steal Kubernetes service account tokens, move laterally, and potentially take over an entire cluster. The command-injection bugs were rated CVSS 9.8 and are especially dangerous because Chaos Mesh components such as the Controller Manager and Chaos Daemon typically run with elevated privileges. Chaos Mesh has issued fixes, including changes referenced in GitHub pull request #4702, and JFrog urged users to upgrade immediately to Chaos Mesh 2.7.3 or disable the controller server through Helm as a temporary mitigation; platforms that integrate Chaos Mesh, including Azure Chaos Studio for AKS, may also be exposed.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
5 events from the most recent confirmed update back to the earliest known activity.
JFrog Security Research disclosed four vulnerabilities in Chaos Mesh, including three critical CVEs, and said deployments prior to version 2.7.3 were affected. JFrog reported the flaws could be chained from an unprivileged pod with in-cluster network access to achieve arbitrary command execution and possible full cluster takeover, and recommended upgrading to 2.7.3 or disabling the controller server.
ZeroPath published summaries covering CVE-2025-59358, CVE-2025-59359, CVE-2025-59360, and CVE-2025-59361 in Chaos Mesh. The reports described an authentication bypass and multiple command injection issues that could be chained for cluster-wide impact.
Chaos Mesh reportedly addressed the command injection vulnerabilities affecting the cleanTcs and cleanIptables mutations through GitHub pull request #4702. These flaws could allow arbitrary shell command execution in the Chaos Controller Manager.
Chaos Mesh publicly fixed the GraphQL authentication bypass vulnerability CVE-2025-59358 and coordinated disclosure with JFrog researchers. The flaw allowed unauthenticated access to the Controller Manager's exposed GraphQL debugging server where reachable from the cluster network.
A critical authentication bypass in the unsupported cockroach-k8s-request-cert container image was publicly described as affecting all versions due to an empty root password field in /etc/shadow. The summary noted Cockroach Labs had indicated remediation was left to users.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
6 references tracked. Mallory keeps watching after this page renders.
jfrog.com
Open sourcezeropath.com
Open sourcezeropath.com
Open sourcezeropath.com
Open sourcezeropath.com
Open sourcezeropath.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.