EUVD-2021-24652

Malware in sbrugna...

EUVD-2021-20385

Malware in sbrugna...

Kyma Elevation of Privilege Vulnerability

kyma is an open source platform for scaling applications using microservices and serverless functionality. kyma suffers from an elevation-of-privilege vulnerability that stems from a networked system or product that does not properly authenticate incoming data. An authenticated attacker could...

Privilege Escalation

kyma-project/kyma is vulnerable to privilege escalation. The vulnerability exists because it does not properly handle permissions, which allows authenticated users to escalate their permissions...

CVE-2021-38182

Due to insufficient input validation of Kyma, authenticated users can pass a Header of their choice and escalate privileges which can completely compromise the cluster...

CVE-2021-38182

Due to insufficient input validation of Kyma, authenticated users can pass a Header of their choice and escalate privileges which can completely compromise the cluster...

Input validation

Due to insufficient input validation of Kyma, authenticated users can pass a Header of their choice and escalate privileges which can completely compromise the cluster...

CVE-2021-38182

Due to insufficient input validation of Kyma, authenticated users can pass a Header of their choice and escalate privileges which can completely compromise the cluster...

CVE-2021-38182

CVE-2021-38182 affects Kyma. The vulnerability stems from insufficient input validation, allowing authenticated users to craft a custom Header and escalate privileges, potentially compromising the entire cluster. The issue is documented across multiple sources (Red Hat, CNVD, NVD, OSV, etc.) with...

kyma 输入验证错误漏洞

kyma is an open source platform for scaling applications using microservices and serverless functionality. kyma suffers from an elevation-of-privilege vulnerability that stems from a networked system or product that does not properly authenticate incoming data. An authenticated attacker could...

CVE-2021-33708

Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges...

CVE-2021-33708

Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges...

Input validation

Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges...

CVE-2021-33708

Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges...

CVE-2021-33708

CVE-2021-33708 refers to Kyma, where insufficient input validation allows authenticated users to craft a custom Header to escalate privileges. The connected Red Hat, NVD, OSV, and other feeds corroborate the core issue: an input validation flaw enabling privilege escalation via authenticated requ...

kyma-project kyma 输入验证错误漏洞

kyma is an open source platform for scaling applications using microservices and serverless capabilities. kyma-project kyma suffers from an Input Validation Error vulnerability that stems from insufficient input validation in Kyma, where an authenticated user can pass a Header of their choice and...