Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-47238

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00671EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-47239

Malicious code in bioql PyPI...

6.1CVSS5.6AI score0.00457EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-47237

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00671EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-47236

Malicious code in bioql PyPI...

6.1CVSS5.6AI score0.00657EPSS
Exploits0References4
OSV
OSV
added 2025/07/29 6:49 p.m.4 views

GO-2025-3823 Kyverno's Improper JMESPath Variable Evaluation Lead to Denial of Service in github.com/kyverno/kyverno

Kyverno's Improper JMESPath Variable Evaluation Lead to Denial of Service in github.com/kyverno/kyverno...

7.7CVSS6AI score0.00475EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 4:55 a.m.12 views

CVE-2023-42814

Kyverno is a policy engine designed for Kubernetes. A security vulnerability was found in Kyverno where an attacker could cause denial of service of Kyverno. The vulnerable component in Kyvernos Notary verifier. An attacker would need control over the registry from which Kyverno would fetch...

5.3CVSS6.8AI score0.00671EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:8 a.m.8 views

CVE-2023-47630

Kyverno is a policy engine designed for Kubernetes. An issue was found in Kyverno that allowed an attacker to control the digest of images used by Kyverno users. The issue would require the attacker to compromise the registry that the Kyverno users fetch their images from. The attacker could then...

7.1CVSS7AI score0.00261EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:58 a.m.9 views

CVE-2023-42816

Kyverno is a policy engine designed for Kubernetes. A security vulnerability was found in Kyverno where an attacker could cause denial of service of Kyverno. The vulnerability was in Kyvernos Notary verifier. An attacker would need control over the registry from which Kyverno would fetch...

6.1CVSS6.9AI score0.00457EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/03/24 7:7 p.m.19 views

Kyverno ignores subjectRegExp and IssuerRegExp

Summary Kyverno ignores subjectRegExp and IssuerRegExp while verifying artifact's sign with keyless mode. It allows the attacker to deploy kubernetes resources with the artifacts that were signed by unexpected certificate. Details Kyverno checks only subject and issuer fields when verifying an...

8CVSS7.4AI score0.00317EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder