CVE-2026-4789 | THREATINT

Description

Kyverno, versions 1.16.0 and later, are vulnerable to SSRF due to unrestricted CEL HTTP functions.

PUBLISHED Reserved 2026-03-24 | Published 2026-03-30 | Updated 2026-04-01 | Assigner certcc

Problem types

CWE-918 Server-Side Request Forgery (SSRF)

Product status

1.16.0

affected

References

www.kb.cert.org/vuls/id/655822

github.com/kyverno/kyverno

kb.cert.org/vuls/id/655822

portswigger.net/web-security/ssrf

cve.org (CVE-2026-4789)

nvd.nist.gov (CVE-2026-4789)

Download JSON

help @ threatint.eu