Lucene search
Veracode Vulnerability DatabaseVERACODE:38655HistoryDec 27, 2022 - 4:04 a.m.
Authorization Bypass
2022-12-2704:04:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
kyverno
authorization bypass
image signature validation
vulnerability
restrictions
data retrieval
EPSS
0.002
Percentile
58.7%
github.com/kyverno/kyverno is vulnerable to authorization bypass.The vulnerability exists in multiple functions due to an image signature validation which allows an attacker to bypass the restrictions and retrieve data via the verifyImages rule.
References
github.com/advisories/GHSA-m3cq-xcx9-3gvm
github.com/golang/vulndb/issues/1186
github.com/kyverno/kyverno/commit/7682030bf928c27bb058edfa6b54fa7aa7efbcd5
github.com/kyverno/kyverno/compare/v1.8.4...v1.8.5
github.com/kyverno/kyverno/pull/5713
github.com/kyverno/kyverno/releases/tag/v1.8.5
github.com/kyverno/kyverno/security/advisories/GHSA-m3cq-xcx9-3gvm
kyverno.io/docs/writing-policies/verify-images/
kyverno.io/policies/best-practices/restrict_image_registries/restrict_image_registries/
Related
prion
prion
Input validation
2022-12-23 23:15:00
nvd
nvd
CVE-2022-47633
2022-12-23 23:15:08
osv
osv
Verification rule bypass in github.com/kyverno/kyverno
2022-12-27 18:24:54
CVE-2022-47633
2022-12-23 23:15:08
kyverno verifyImages rule bypass possible with malicious proxy/registry
2022-12-21 17:24:10
cvelist
cvelist
CVE-2022-47633
2022-12-23 00:00:00
cve
cve
CVE-2022-47633
2022-12-23 23:15:08
github
github
kyverno verifyImages rule bypass possible with malicious proxy/registry
2022-12-21 17:24:10