4 matches found
PT-2026-6337
Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have unbounded memory consumption in Kyverno's policy engine that allows users with policy creation privileges to cause denial of service by crafting policies that exponentially...
Denial Of Service (DoS)
github.com/kyverno/kyverno is vulnerable to Denial Of Service DoS. The vulnerability is due to unbounded memory usage in the policy engine when processing crafted policies that exponentially amplify string data via context variables, which allows an attacker with policy creation privileges to...
CVE-2026-23881
Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have unbounded memory consumption in Kyverno's policy engine that allows users with policy creation privileges to cause denial of service by crafting policies that exponentially...
PT-2026-4956
Name of the Vulnerable Software and Affected Versions Kyverno versions prior to 1.16.3 Kyverno versions prior to 1.15.3 Description Kyverno is a policy engine for cloud native platform engineering teams. Affected versions experience unbounded memory consumption within the policy engine. Users wit...