Every CVE whose affected-product data names Kyma-project Kyma, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-33708 — CVSS 8.8 (high): Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges.
CVE-2021-38182 — CVSS 8.8 (high): Due to insufficient input validation of Kyma, authenticated users can pass a Header of their choice and escalate privileges which can…