← Back to home
wid-sec-w-2026-0919  ·  Published 2026-03-30  ·  View on BSI CERT-Bund ↗

Kyverno: Vulnerability allows Offenlegung from Informationen

CVSS 9.8 CRITICAL

Risk Summary

Kyverno, versions 1.16.0 and later, are vulnerable to SSRF due to unrestricted CEL HTTP functions.

CVEs (1)

Affected Vendors

Open Source

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more