The Kubernetes project is a registered CVE Numbering Authority (CNA) with MITRE.
Requests for CVE numbers for components residing within https://github.com/kubernetes/kubernetes should be directed to [email protected].
CVE numbers are typically requested by the fix lead for a particular issue as part of the security release process.