Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity `validate.podSecurity` subrule in Kyverno 1.9.2 and 1.9.3 are vulnerable. This issue was patched in version 1.9.4.
References
Link | Resource |
---|---|
https://github.com/kyverno/kyverno/pull/7263 | Issue Tracking |
https://github.com/kyverno/kyverno/releases/tag/v1.9.4 | Release Notes |
https://github.com/kyverno/kyverno/security/advisories/GHSA-33hq-f2mf-jm3c | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-05-30T06:06:14.987Z
Updated: 2023-05-30T06:06:14.987Z
Reserved: 2023-05-17T22:25:50.699Z
Link: CVE-2023-33191
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-05-30T07:15:09.997
Modified: 2023-06-05T16:44:08.867
Link: CVE-2023-33191
JSON object: View
Redhat Information
No data.