Lucene search
K

6 matches found

OSV
OSV
added 2025/09/12 11:43 a.m.6 views

BIT-KYVERNO-2025-29778 Kyverno ignores subjectRegExp and IssuerRegExp

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to version 1.14.0, Kyverno ignores subjectRegExp and IssuerRegExp while verifying artifact's sign with keyless mode. It allows the attacker to deploy kubernetes resources with the artifacts that were signed by...

8CVSS5.4AI score0.00317EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/03/26 5:25 p.m.7 views

CVE-2025-29778

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to version 1.14.0-alpha.1, Kyverno ignores subjectRegExp and IssuerRegExp while verifying artifact's sign with keyless mode. It allows the attacker to deploy kubernetes resources with the artifacts that were...

8CVSS7.1AI score0.00317EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/03/24 4:38 p.m.8 views

CVE-2025-29778 Kyverno ignores subjectRegExp and IssuerRegExp

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to version 1.14.0-alpha.1, Kyverno ignores subjectRegExp and IssuerRegExp while verifying artifact's sign with keyless mode. It allows the attacker to deploy kubernetes resources with the artifacts that were...

5.8CVSS7.1AI score0.00317EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/03/24 4:38 p.m.42 views

CVE-2025-29778 Kyverno ignores subjectRegExp and IssuerRegExp

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to version 1.14.0-alpha.1, Kyverno ignores subjectRegExp and IssuerRegExp while verifying artifact's sign with keyless mode. It allows the attacker to deploy kubernetes resources with the artifacts that were...

5.8CVSS0.00317EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.4 views

Kyverno 授权问题漏洞

Kyverno is a policy engine designed for Kubernetes that is open sourced by Kyverno. An authorization issue vulnerability exists in versions prior to Kyverno 1.14.0-alpha.1 that stems from ignoring subjectRegExp and IssuerRegExp when verifying artifact signatures in keyless mode, which could lead ...

8CVSS5.2AI score0.00317EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/03/24 12:0 a.m.11 views

PT-2025-12664 · Kyverno · Kyverno

Name of the Vulnerable Software and Affected Versions: Kyverno versions prior to 1.14.0-alpha.1 Description: Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to version 1.14.0-alpha.1, Kyverno ignores the subjectRegExp and issuerRegExp fields when verifying...

9.8CVSS7.1AI score0.99098EPSS
Exploits23References48
Rows per page
Query Builder