4 matches found
CVE-2026-41068 vulnerabilities
Vulnerabilities for packages: kyverno, kyverno-notation-aws...
CVE-2026-41068 vulnerabilities
Vulnerabilities for packages: kyverno-fips, kyverno-notation-aws-fips, kyverno-notation-aws, kyverno...
CVE-2026-41068
creationtimestamp| type| source ---|---|--- 2026-04-24 05:18:58+00:00| seen| Telegram/kIuLSWSF-lSSH53f04z2OEjKv8ykvXtTNiYc9dOAOt4c 2026-04-24 05:46:02+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mk7t5usvb52w...
CVE-2026-41068
Kyverno is a policy engine designed for cloud native platform engineering teams. The patch for CVE-2026-22039 fixed cross-namespace privilege escalation in Kyverno's apiCall context by validating the URLPath field. However, the ConfigMap context loader has the identical vulnerability — the...