kyma 输入验证错误漏洞

kyma is an open source platform for scaling applications using microservices and serverless functionality. kyma suffers from an elevation-of-privilege vulnerability that stems from a networked system or product that does not properly authenticate incoming data. An authenticated attacker could...

CVE-2021-33708

Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges...