Kyma

kyma

Vendor: Kyma Project • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-38182 1Kyma Project 1Kyma Nov 21, 2024 Dec 14, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Due to insufficient input validation of Kyma, authenticated users can pass a Header of their choice and escalate privileges which can completely compromise the cluster.
CVE-2021-33708 1Kyma Project 1Kyma Nov 21, 2024 Aug 10, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges.