← Back

Kyma Project

kyma-project

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Kyma
kyma
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-38182
1Kyma Project
1Kyma
Nov 21, 2024
Dec 14, 2021
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Due to insufficient input validation of Kyma, authenticated users can pass a Header of their choice and escalate privileges which can completely compromise the cluster.
CVE-2021-33708
1Kyma Project
1Kyma
Nov 21, 2024
Aug 10, 2021
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges.