CVE-2026-41068 | Kyverno up to 1.17.1 Kubernetes Cluster URLPath authorization (GHSA-cvq5-hhx3-f99p)

Inserito da Angelo Barbosa | Apr 24, 2026 | CVE

A vulnerability was found in Kyverno up to 1.17.1. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Kubernetes Cluster Handler. The manipulation of the argument URLPath leads to incorrect authorization.

This vulnerability is documented as CVE-2026-41068. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2026-41068 | Kyverno up to 1.17.1 Kubernetes Cluster URLPath authorization (GHSA-cvq5-hhx3-f99p)

Post correlati

CVE-2024-29092 | Maciej Bis Permalink Manager Lite Plugin up to 2.4.3 on WordPress cross site scripting

CVE-2025-14996 | AS Password Field In Default Registration Form Plugin Remote Code Execution

CVE-2024-47612 | miraheze DataDump cross site scripting

CVE-2025-5296 | Schneider Electric SESU up to 3.0.11 link following (SEVD-2025-224-03)