VYPR

apk package

chainguard/virt-handler-1.8

pkg:apk/chainguard/virt-handler-1.8

Vulnerabilities (24)

  • CVE-2026-6383MedApr 15, 2026
    affected < 1.8.2-r0fixed 1.8.2-r0

    A flaw was found in KubeVirt's Role-Based Access Control (RBAC) evaluation logic. The authorization mechanism improperly truncates subresource names, leading to incorrect permission evaluations. This allows authenticated users with specific custom roles to gain unauthorized acces

  • CVE-2025-14525MedJan 26, 2026
    affected < 0fixed 0

    A flaw was found in kubevirt. A user within a virtual machine (VM), if the guest agent is active, can exploit this by causing the agent to report an excessive number of network interfaces. This action can overwhelm the system's ability to store VM configuration updates, effective

  • CVE-2024-33394May 2, 2024
    affected < 0fixed 0

    An issue in kubevirt kubevirt v1.2.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component.

  • CVE-2024-31420MedApr 3, 2024
    affected < 0fixed 0

    A NULL pointer dereference flaw was found in KubeVirt. This flaw allows an attacker who has access to a virtual machine guest on a node with DownwardMetrics enabled to cause a denial of service by issuing a high number of calls to vm-dump-metrics --virtio and then deleting the vi

Page 2 of 2