Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.5 views

PT-2026-6337

Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have unbounded memory consumption in Kyverno's policy engine that allows users with policy creation privileges to cause denial of service by crafting policies that exponentially...

7.7CVSS5.6AI score0.00531EPSS
Exploits1References5
Veracode
Veracode
added 2026/01/29 1:10 p.m.7 views

Denial Of Service (DoS)

github.com/kyverno/kyverno is vulnerable to Denial Of Service DoS. The vulnerability is due to unbounded memory usage in the policy engine when processing crafted policies that exponentially amplify string data via context variables, which allows an attacker with policy creation privileges to...

7.7CVSS5.9AI score0.00531EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/27 4:10 p.m.3 views

CVE-2026-23881

Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have unbounded memory consumption in Kyverno's policy engine that allows users with policy creation privileges to cause denial of service by crafting policies that exponentially...

7.7CVSS5.9AI score0.00531EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.4 views

PT-2026-4956

Name of the Vulnerable Software and Affected Versions Kyverno versions prior to 1.16.3 Kyverno versions prior to 1.15.3 Description Kyverno is a policy engine for cloud native platform engineering teams. Affected versions experience unbounded memory consumption within the policy engine. Users wit...

7.7CVSS5.3AI score0.00531EPSS
Exploits1References14
Rows per page
Query Builder