CVE-2023-42814
CVE-2023-42814 describes a denial-of-service vulnerability in Kyverno, affecting the Notary verifier component. The attacker must control the registry Kyverno fetches attestations from and can cause Kyverno to crash by returning a malicious response to Kyverno’s registry requests. This vulnerabil...