Every CVE whose affected-product data names Nirmata Kyverno, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-34091 — CVSS 6.5 (medium): Kyverno is a policy engine designed for Kubernetes. In versions of Kyverno prior to 1.10.0, resources which have the `deletionTimestamp`…
CVE-2023-42816 — CVSS 6.1 (medium): Kyverno is a policy engine designed for Kubernetes. A security vulnerability was found in Kyverno where an attacker could cause denial of…
CVE-2023-42813 — CVSS 6.1 (medium): Kyverno is a policy engine designed for Kubernetes. A security vulnerability was found in Kyverno where an attacker could cause denial of…
CVE-2023-33191 — CVSS 4.6 (medium): Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity…
CVE-2023-42814 — CVSS 3.1 (low): Kyverno is a policy engine designed for Kubernetes. A security vulnerability was found in Kyverno where an attacker could cause denial of…
CVE-2023-42815 — CVSS 3.1 (low): Kyverno is a policy engine designed for Kubernetes. A security vulnerability was found in Kyverno where an attacker could cause denial of…
CVE-2024-48921 — CVSS 2.7 (low): Kyverno is a policy engine designed for Kubernetes. A kyverno ClusterPolicy, ie. "disallow-privileged-containers," can be overridden by the…