10 matches found
EUVD-2023-1454
Malicious code in bioql PyPI...
CVE-2023-33191
Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity validate.podSecurity subrule in Kyverno 1.9.2 and 1.9.3 are vulnerable. This issue was patched in version 1.9.4...
GO-2023-1801 kyverno seccomp control can be circumvented in github.com/kyverno/kyverno
kyverno seccomp control can be circumvented in github.com/kyverno/kyverno...
Improper Access Control
github.com/kyverno/kyverno is vulnerable to Improper Access Control. The vulnerability exists when using the validate.podSecurity subrule which allows an attacker to circumvent seccomp control...
CVE-2023-33191
Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity validate.podSecurity subrule in Kyverno 1.9.2 and 1.9.3 are vulnerable. This issue was patched in version 1.9.4...
Code injection
Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity validate.podSecurity subrule in Kyverno 1.9.2 and 1.9.3 are vulnerable. This issue was patched in version 1.9.4...
CVE-2023-33191 kyverno seccomp control can be circumvented
Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity validate.podSecurity subrule in Kyverno 1.9.2 and 1.9.3 are vulnerable. This issue was patched in version 1.9.4...
kyverno seccomp control can be circumvented
Impact Users of the podSecurity validate.podSecurity subrule in Kyverno versions v1.9.2 and v1.9.3 may be unable to enforce the check for the Seccomp control at the baseline level when using a version value of latest. There is no effect if a version number is referenced instead. See the...
GHSA-33HQ-F2MF-JM3C kyverno seccomp control can be circumvented
Impact Users of the podSecurity validate.podSecurity subrule in Kyverno versions v1.9.2 and v1.9.3 may be unable to enforce the check for the Seccomp control at the baseline level when using a version value of latest. There is no effect if a version number is referenced instead. See the...
PT-2023-24208 · Kyverno · Kyverno
Name of the Vulnerable Software and Affected Versions: Kyverno versions 1.9.2 through 1.9.3 Description: Kyverno is a policy engine designed for Kubernetes. The issue concerns the Kyverno seccomp control, which can be circumvented. Users of the podSecurity validate.podSecurity subrule are affecte...