CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2026/02/03 8:42 a.m.•4 views

BIT-KYVERNO-2026-23881 Kyverno Denial of Service via Context Variable Amplification in Policy Engine

Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have unbounded memory consumption in Kyverno's policy engine that allows users with policy creation privileges to cause denial of service by crafting policies that exponentially...

7.7CVSS5.5AI score0.00104EPSS

Exploits1References4

OSV•added 2026/02/02 9:5 p.m.•2 views

GO-2026-4382 Kyverno Denial of Service via Context Variable Amplification in Policy Engine in github.com/kyverno/kyverno

Kyverno Denial of Service via Context Variable Amplification in Policy Engine in github.com/kyverno/kyverno...

7.7CVSS5.2AI score0.00104EPSS

Exploits1References4

Github Security Blog•added 2026/01/27 6:2 p.m.•11 views

Kyverno Denial of Service via Context Variable Amplification in Policy Engine

Summary Unbounded memory consumption in Kyverno's policy engine allows users with policy creation privileges to cause Denial of Serviceby crafting policies that exponentially amplify string data through context variables. Details For example, the random JMESPath function in...

7.7CVSS5.9AI score0.00104EPSS

Exploits1References5Affected Software1

CVE•added 2026/01/27 4:10 p.m.•7 views

CVE-2026-23881

CVE-2026-23881 affects Kyverno policy engine prior to versions 1.16.3 and 1.15.3, which exhibit unbounded memory consumption that can cause denial of service when policies with context variables are crafted by users with policy-creation privileges. The issue is resolved in 1.16.3 and 1.15.3 by a ...

7.7CVSS5.9AI score0.00104EPSS

Exploits1References3Affected Software1