Lucene search
+L

4 matches found

github
github
added 2023/06/05 5:10 p.m.36 views

Kyverno resource with a deletionTimestamp may allow policy circumvention

Impact In versions of Kyverno prior to 1.10.0, resources which have the deletionTimestamp field defined can bypass validate, generate, or mutate-existing policies, even in cases where the validationFailureAction field is set to Enforce. This situation occurs as resources pending deletion were bei...

6.5CVSS6.8AI score0.00497EPSS
Exploits0References4Affected Software1
osv
osv
added 2023/06/05 5:10 p.m.21 views

GHSA-HQ4M-4948-64CC Kyverno resource with a deletionTimestamp may allow policy circumvention

Impact In versions of Kyverno prior to 1.10.0, resources which have the deletionTimestamp field defined can bypass validate, generate, or mutate-existing policies, even in cases where the validationFailureAction field is set to Enforce. This situation occurs as resources pending deletion were bei...

6.5CVSS6.3AI score0.00497EPSS
Exploits0References4
prion
prion
added 2023/06/01 5:15 p.m.20 views

Design/Logic Flaw

Kyverno is a policy engine designed for Kubernetes. In versions of Kyverno prior to 1.10.0, resources which have the deletionTimestamp field defined can bypass validate, generate, or mutate-existing policies, even in cases where the validationFailureAction field is set to Enforce. This situation...

4CVSS6.4AI score0.00497EPSS
Exploits0References2Affected Software1
osv
osv
added 2023/06/01 4:24 p.m.24 views

CVE-2023-34091 Kyverno resource with a deletionTimestamp may allow policy circumvention

Kyverno is a policy engine designed for Kubernetes. In versions of Kyverno prior to 1.10.0, resources which have the deletionTimestamp field defined can bypass validate, generate, or mutate-existing policies, even in cases where the validationFailureAction field is set to Enforce. This situation...

6.5CVSS6.3AI score0.00497EPSS
Exploits0References4
Rows per page
Query Builder