A critical vulnerability in the Kubernetes C# client allows attackers to perform man-in-the-middle attacks and impersonate APIs due to flawed certificate validation when using custom CAs. This flaw enables unauthorized command execution and data interception, affecting all versions prior to v17.0.14. Immediate upgrades are recommended, with temporary mitigation available through system trust store adjustments.