Veracode Vulnerability DatabaseVERACODE:44264Denial Of Service (DoS)
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
6.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
22.8%
github.com/kyverno/kyverno is vulnerable to Denial of Service (DoS). An attacker with control over the registry from which Kyverno fetches signatures could exploit this vulnerability by returning a malicious response to Kyverno’s request. The malicious response could be a malformed signature or a signature that is not for the attestation that Kyverno is expecting. If Kyverno receives a malicious response, it will be unable to verify the signature and will crash. This will prevent Kyverno from processing any admission requests, which will cause a DoS.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/kyverno/kyverno | eq | HEAD | |
| github.com/kyverno/kyverno | eq | HEAD |
Related
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
6.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
22.8%