7 matches found
GO-2026-5450 KubeVirt's authorization mechanism improperly truncates subresource names in kubevirt.io/kubevirt
KubeVirt's authorization mechanism improperly truncates subresource names in kubevirt.io/kubevirt...
KubeVirt's authorization mechanism improperly truncates subresource names
A flaw was found in KubeVirt's Role-Based Access Control RBAC evaluation logic. The authorization mechanism improperly truncates subresource names, leading to incorrect permission evaluations. This allows authenticated users with specific custom roles to gain unauthorized access to subresources,...
GHSA-J6CV-3W8P-VRG8 KubeVirt's authorization mechanism improperly truncates subresource names
A flaw was found in KubeVirt's Role-Based Access Control RBAC evaluation logic. The authorization mechanism improperly truncates subresource names, leading to incorrect permission evaluations. This allows authenticated users with specific custom roles to gain unauthorized access to subresources,...
CVE-2026-6383 Kubevirt: kubevirt: unauthorized subresource access due to improper rbac evaluation
A flaw was found in KubeVirt's Role-Based Access Control RBAC evaluation logic. The authorization mechanism improperly truncates subresource names, leading to incorrect permission evaluations. This allows authenticated users with specific custom roles to gain unauthorized access to subresources,...
CVE-2026-6383
A flaw was found in KubeVirt's Role-Based Access Control RBAC evaluation logic. The authorization mechanism improperly truncates subresource names, leading to incorrect permission evaluations. This allows authenticated users with specific custom roles to gain unauthorized access to subresources,...
CVE-2026-6383
KubeVirt RBAC evaluation logic flaw truncates subresource names, causing incorrect permission checks. Authenticated users with specific custom roles may gain unauthorized access to subresources and sensitive information, while legitimate users can be denied access. The issue is described across C...
PT-2026-33165
Name of the Vulnerable Software and Affected Versions KubeVirt affected versions not specified Description A flaw exists in the Role-Based Access Control RBAC evaluation logic where the authorization mechanism improperly truncates subresource names. This leads to incorrect permission evaluations,...