CVE-2026-25542 Tekton Pipelines: VerificationPolicy regex pattern bypass via substring matching

🗓️ 21 Apr 2026 16:05:43Reported by GitHub_MType

CVE-2026-25542: Tekton Pipelines verification policies are bypassed by substring matches, causing unintended policy changes.

Reporter	Title	Published	Views	Family All 16
ATTACKERKB	CVE-2026-25542	21 Apr 202616:05	–	attackerkb
Chainguard	CVE-2026-25542 vulnerabilities	8 May 202601:18	–	cgr
Circl	CVE-2026-25542	21 Apr 202614:13	–	circl
CNNVD	Tekton Pipelines 安全漏洞	21 Apr 202600:00	–	cnnvd
CVE	CVE-2026-25542	21 Apr 202616:05	–	cve
EUVD	EUVD-2026-24151	21 Apr 202616:25	–	euvd
Github Security Blog	Tekton Pipelines has VerificationPolicy regex pattern bypass via substring matching	21 Apr 202616:25	–	github
NVD	CVE-2026-25542	21 Apr 202617:16	–	nvd
OSV	CGA-HMRW-J52P-4JMV	7 May 202621:02	–	osv
OSV	GHSA-RMX9-2PP3-XHCR Tekton Pipelines has VerificationPolicy regex pattern bypass via substring matching	21 Apr 202616:25	–	osv

[
  {
    "vendor": "tektoncd",
    "product": "pipeline",
    "versions": [
      {
        "version": ">= 0.43.0, < 1.0.2",
        "status": "affected"
      },
      {
        "version": ">= 1.2.0, < 1.3.4",
        "status": "affected"
      },
      {
        "version": ">= 1.4.0, < 1.6.2",
        "status": "affected"
      },
      {
        "version": ">= 1.7.0, < 1.9.3",
        "status": "affected"
      },
      {
        "version": ">= 1.10.0, < 1.11.1",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/tektoncd/pipeline/commit/b8905600322aa86327baae0a7c04d6cf1207362a
github	www.github.com/tektoncd/pipeline/security/advisories/GHSA-rmx9-2pp3-xhcr

22 May 2026 16:06Current

CVSS 3.16.5

EPSS0.00039

CWE-185