VYPR

kyma

by Kyma Project

CVEs (2)

  • CVE-2021-38182HigDec 14, 2021
    risk 0.57cvss 8.8epss 0.01

    Due to insufficient input validation of Kyma, authenticated users can pass a Header of their choice and escalate privileges which can completely compromise the cluster.

  • CVE-2021-33708HigAug 10, 2021
    risk 0.57cvss 8.8epss 0.01

    Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges.