3 matches found
BIT-KYVERNO-2023-47630 Attacker can cause Kyverno user to unintentionally consume insecure image
Kyverno is a policy engine designed for Kubernetes. An issue was found in Kyverno that allowed an attacker to control the digest of images used by Kyverno users. The issue would require the attacker to compromise the registry that the Kyverno users fetch their images from. The attacker could then...
PT-2024-18985 · Atlassian · Jira +5
Name of the Vulnerable Software and Affected Versions: ion-java versions prior to 1.10.5 Bitbucket Data Center and Server versions 7.21.0 through 8.18.0 Confluence Data Center and Server versions 5.6 through 8.8.1 Jira Software versions affected versions not specified Jira Work Management version...
SUSE CVE-2023-47630
Kyverno is a policy engine designed for Kubernetes. An issue was found in Kyverno that allowed an attacker to control the digest of images used by Kyverno users. The issue would require the attacker to compromise the registry that the Kyverno users fetch their images from. The attacker could then...