kyverno-reports-controller-1.17

Direct Vulnerabilities

Known vulnerabilities in the kyverno-reports-controller-1.17 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L CVE-2026-39821	<1.17.2-r4
L Improper Restriction of Rendered UI Layers or Frames	<1.17.2-r4
L Out-of-Bounds	<1.17.2-r4
L Improper Enforcement of Message Integrity During Transmission in a Communication Channel	<1.17.2-r4
L CVE-2026-27145	<1.17.2-r3
L Resource Exhaustion	<1.17.2-r4
L Incorrect Type Conversion or Cast	<1.17.2-r4
L CVE-2026-46598	<1.17.2-r4
L Improper Verification of Cryptographic Signature	<1.17.2-r4
L Integer Overflow or Wraparound	<1.17.2-r4
L CVE-2026-46595	<1.17.2-r4
L CVE-2026-42507	<1.17.2-r3
L CVE-2026-39824	<1.17.2-r4
L Improper Certificate Validation	<1.17.2-r4
L Improper Restriction of Rendered UI Layers or Frames	<1.17.2-r4
L CVE-2026-42504	<1.17.2-r3
L Missing Authorization	<1.17.2-r4
L Improper Certificate Validation	<1.17.2-r4
L Missing Authorization	<1.17.2-r4
L Deserialization of Untrusted Data	<1.17.2-r4
L Improper Restriction of Rendered UI Layers or Frames	<1.17.2-r4
L Improper Certificate Validation	<1.17.2-r4
L Cross-site Scripting (XSS)	<1.17.2-r4
L GHSA-pmwq-pjrm-6p5r	*
L CVE-2026-39825	<1.17.2-r2
L Improper Encoding or Escaping of Output	<1.17.2-r2
H Allocation of Resources Without Limits or Throttling	<1.17.2-r2
L CVE-2026-42501	<1.17.2-r2
H NULL Pointer Dereference	<1.17.2-r2
M Link Following	<1.17.2-r2
H Loop with Unreachable Exit Condition ('Infinite Loop')	<1.17.2-r2
L Cross-site Scripting (XSS)	<1.17.2-r2
L CVE-2026-42499	<1.17.2-r2
M Out-of-bounds Write	<1.17.2-r2
H Double Free	<1.17.2-r2
L Reachable Assertion	<1.17.2-r0
L Allocation of Resources Without Limits or Throttling	<1.17.1-r8
H Integer Overflow or Wraparound	<1.17.2-r1
L GHSA-qr4g-8hrp-c4rw	<1.17.2-r0
L Incorrect Authorization	<1.17.2-r0
L Server-Side Request Forgery (SSRF)	<1.17.2-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<1.17.1-r8
L GHSA-3xc5-wrhm-f963	<1.17.1-r10
C CVE-2026-27143	<1.17.1-r8
L Improper Certificate Validation	<1.17.1-r9
M Allocation of Resources Without Limits or Throttling	<1.17.1-r8
M Link Following	<1.17.1-r8
H Improper Certificate Validation	<1.17.1-r8
H Incorrect Authorization	<1.17.1-r8
L CVE-2026-32280	<1.17.1-r8
M Cross-site Scripting (XSS)	<1.17.1-r8
H Allocation of Resources Without Limits or Throttling	<1.17.1-r8
H Improper Certificate Validation	<1.17.1-r8
H Untrusted Search Path	<1.17.1-r8
L Uncaught Exception	<1.17.1-r7
L Improper Validation of Array Index	<1.17.1-r6
L Integer Underflow	<1.17.1-r6
L Improper Authorization	<1.17.1-r5
L Improper Certificate Validation	<1.17.1-r4
L Improper Certificate Validation	<1.17.1-r4
L Directory Traversal	<1.17.1-r4
L Cross-site Scripting (XSS)	<1.17.1-r4
L Direct Request ('Forced Browsing')	<1.17.1-r4
H CVE-2025-15558	<1.17.1-r3
L Untrusted Search Path	<1.17.1-r2
C CVE-2026-1229	<1.17.1-r1
M Improper Validation of Integrity Check Value	<1.17.0-r1

Vulnerability

Vulnerable Version

CVE-2026-39821

<1.17.2-r4