Skip to main content

Kyverno

4 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-23881 Go HIGH POC PATCH This Week

Kyverno versions up to 1.16.3 is affected by allocation of resources without limits or throttling (CVSS 7.7).

Denial Of Service Kyverno Suse
NVD GitHub
CVSS 3.1
7.7
EPSS
0.1%
CVE-2026-22039 Go CRITICAL POC PATCH Act Now

Kyverno Kubernetes policy engine prior to 1.x has a privilege escalation vulnerability (CVSS 9.9) allowing policy bypass and unauthorized cluster operations.

Kubernetes Kyverno Suse
NVD GitHub VulDB
CVSS 3.1
9.9
EPSS
0.1%
CVE-2025-46342 Go HIGH POC PATCH This Week

Kyverno is a policy engine designed for cloud native platform engineering teams. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. Public exploit code available.

Kubernetes Authentication Bypass Kyverno Suse
NVD GitHub
CVSS 3.1
8.5
EPSS
0.3%
CVE-2025-29778 Go MEDIUM POC PATCH This Month

Kyverno is a policy engine designed for cloud native platform engineering teams. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. Public exploit code available.

Authentication Bypass Kubernetes Kyverno Suse
NVD GitHub
CVSS 3.1
5.8
EPSS
0.1%
CVE-2026-23881 Go
EPSS 0% CVSS 7.7
HIGH POC PATCH This Week

Kyverno versions up to 1.16.3 is affected by allocation of resources without limits or throttling (CVSS 7.7).

Denial Of Service Kyverno Suse
NVD GitHub
CVE-2026-22039 Go
EPSS 0% CVSS 9.9
CRITICAL POC PATCH Act Now

Kyverno Kubernetes policy engine prior to 1.x has a privilege escalation vulnerability (CVSS 9.9) allowing policy bypass and unauthorized cluster operations.

Kubernetes Kyverno Suse
NVD GitHub VulDB
CVE-2025-46342 Go
EPSS 0% CVSS 8.5
HIGH POC PATCH This Week

Kyverno is a policy engine designed for cloud native platform engineering teams. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. Public exploit code available.

Kubernetes Authentication Bypass Kyverno +1
NVD GitHub
CVE-2025-29778 Go
EPSS 0% CVSS 5.8
MEDIUM POC PATCH This Month

Kyverno is a policy engine designed for cloud native platform engineering teams. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. Public exploit code available.

Authentication Bypass Kubernetes Kyverno +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy