Lucene search
K

10 matches found

OSV
OSV
added 2026/04/28 10:46 a.m.7 views

BIT-KYVERNO-2026-41485 Kyverno Controller Denial of Service via forEach Mutation Panic

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to versions 1.17.2 and 1.16.4, an unchecked type assertion in the forEach mutation handler allows any user with permission to create a Policy or ClusterPolicy to crash the cluster-wide background controller int...

7.7CVSS5.3AI score0.00369EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/04/28 1:34 a.m.7 views

SUSE CVE-2026-41485

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to versions 1.17.2 and 1.16.4, an unchecked type assertion in the forEach mutation handler allows any user with permission to create a Policy or ClusterPolicy to crash the cluster-wide background controller int...

7.7CVSS5.3AI score0.00369EPSS
Exploits1References3
CVE
CVE
added 2026/04/24 3:27 a.m.12 views

CVE-2026-41485

Kyverno statement: Prior to versions 1.17.2 and 1.16.4, an unchecked type assertion in the forEach mutation handler can be triggered by a user with policy creation rights, causing the cluster-wide background controller to crash into a persistent CrashLoopBackOff and the admission controller to dr...

7.7CVSS5.7AI score0.00369EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2026/04/24 3:27 a.m.4 views

EUVD-2026-25392

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to versions 1.17.2 and 1.16.4, an unchecked type assertion in the forEach mutation handler allows any user with permission to create a Policy or ClusterPolicy to crash the cluster-wide background controller int...

7.7CVSS5.7AI score0.00369EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/04/10 7:44 p.m.19 views

CVE-2026-40189 goshs has a file-based ACL authorization bypass in goshs state-changing routes

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.4, goshs enforces the documented per-folder .goshs ACL/basic-auth mechanism for directory listings and file reads, but it does not enforce the same authorization checks for state-changing routes. An unauthenticated attacker can upload...

9.3CVSS0.00651EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/18 10:23 p.m.3 views

CVE-2026-32737 Romeo's invalid NetworkPolicy enables a malicious actor to pivot into another namespace

Romeo gives the capability to reach high code coverage of Go ≥1.20 apps by helping to measure code coverage for functional and integration tests within GitHub Actions. Prior to version 0.2.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from the "hardened" namespace to any Pod...

7.9CVSS6AI score0.00386EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/16 8:45 p.m.2 views

Improper Restriction of Communication Channel to Intended Endpoints

Overview Affected versions of this package are vulnerable to Improper Restriction of Communication Channel to Intended Endpoints due to an improperly configured NetworkPolicy inter-ns. An attacker can gain unauthorized access to resources in other namespaces by exploiting the misconfiguration,...

10CVSS5.9AI score0.00284EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 11:23 a.m.5 views

CVE-2021-31221

SES Evolution before 2.1.0 allows deleting some parts of a security policy by leveraging access to a computer having the administration console installed...

5.7CVSS6.8AI score0.00487EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/13 12:0 a.m.4 views

Stormshield SES Evolution 授权问题漏洞

Stormshield SES Evolution is a security solution from the French company Stormshield. An authorization issue vulnerability exists in SES Evolution that originates from a vulnerability that allows the deletion of some security policies when accessing a computer on which the management console is...

5.7CVSS5.9AI score0.00487EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2017/01/07 12:0 a.m.6 views

GPO import fails and rollback results in the target policy being deleted on a Windows Server 2012 R2-based DC

GPO import fails and rollback results in the target policy being deleted on a Windows Server 2012 R2-based DC This article describes an issue in which the Group Policy Object GPO import fails and the target policy is deleted during the rollback process on a Windows Server 2012 R2-based domain...

6.7AI score
Exploits0
Rows per page
Query Builder