Vulnerability CVE-2023-33191


Published: 2023-05-30

Description:
Kyverno is a policy engine designed for Kubernetes. Kyverno seccomp control can be circumvented. Users of the podSecurity `validate.podSecurity` subrule in Kyverno 1.9.2 and 1.9.3 are vulnerable. This issue was patched in version 1.9.4.

 References:
https://github.com/kyverno/kyverno/pull/7263
https://github.com/kyverno/kyverno/security/advisories/GHSA-33hq-f2mf-jm3c
https://github.com/kyverno/kyverno/releases/tag/v1.9.4

Copyright 2026, cxsecurity.com

 

Back to Top