Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2026/04/28 1:35 a.m.5 views

SUSE CVE-2026-41068

Kyverno is a policy engine designed for cloud native platform engineering teams. The patch for CVE-2026-22039 fixed cross-namespace privilege escalation in Kyverno's apiCall context by validating the URLPath field. However, the ConfigMap context loader has the identical vulnerability - the...

7.7CVSS5.4AI score0.00266EPSS
Exploits1References3
NVD
NVD
added 2026/04/24 4:16 a.m.3 views

CVE-2026-41068

Kyverno is a policy engine designed for cloud native platform engineering teams. The patch for CVE-2026-22039 fixed cross-namespace privilege escalation in Kyverno's apiCall context by validating the URLPath field. However, the ConfigMap context loader has the identical vulnerability — the...

7.7CVSS0.00266EPSS
Exploits1References2
CVE
CVE
added 2026/04/24 3:14 a.m.15 views

CVE-2026-41068

CVE-2026-41068 concerns Kyverno: the ConfigMap context loader does not validate the namespace field, enabling a namespace admin to read ConfigMaps across namespaces using Kyverno’s privileged service account and causing a complete RBAC bypass in multi-tenant clusters. This mirrors the previously ...

7.7CVSS7.5AI score0.00266EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/24 3:14 a.m.3 views

CVE-2026-41068

Kyverno is a policy engine designed for cloud native platform engineering teams. The patch for CVE-2026-22039 fixed cross-namespace privilege escalation in Kyverno's apiCall context by validating the URLPath field. However, the ConfigMap context loader has the identical vulnerability — the...

9.9CVSS7.5AI score0.00516EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder