CVE-2026-41485: CVE-2026-41485: Denial of Service in Kyverno via Unchecked Type Assertion in Muta…

📰

CVE-2026-41485: CVE-2026-41485: Denial of Service in Kyverno via Unchecked Type Assertion in Mutation Engine

DEV Community·CVE Reports·about 1 month ago

#exploit #security #cve #cybersecurity #kyverno #engine

Reading 0:00

15s threshold

CVE-2026-41485: Denial of Service in Kyverno via Unchecked Type Assertion in Mutation Engine Vulnerability ID: CVE-2026-41485 CVSS Score: 7.7 Published: 2026-04-24 Kyverno policy engine versions prior to 1.16.4 and 1.17.0-rc1 through 1.17.1 are vulnerable to a Denial of Service. An unchecked Go type assertion in the legacy mutation engine triggers a runtime panic when processing missing JMESPath variables. TL;DR A Go type assertion panic in Kyverno's mutation engine allows authenticated users to crash the background and admission controllers, leading to a persistent DoS.…

Continue reading — create a free account

Join HashtagPLUS to read full articles, follow hashtags, vote, and join the conversation.

Create free account Log in

Menu

CVE-2026-41485: CVE-2026-41485: Denial of Service in Kyverno via Unchecked Type Assertion in Mutation Engine