kyverno-1.16

Direct Vulnerabilities

Known vulnerabilities in the kyverno-1.16 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L GHSA-pmwq-pjrm-6p5r	<1.16.4-r3
L CVE-2026-39817	<1.16.4-r2
L CVE-2026-42499	<1.16.4-r2
L GHSA-8g2r-hhvj-mv99	<1.16.4-r2
H Double Free	<1.16.4-r2
L CVE-2026-39823	<1.16.4-r2
L CVE-2026-39836	<1.16.4-r2
L CVE-2026-33814	<1.16.4-r2
L GHSA-h74g-238j-357m	<1.16.4-r2
L GHSA-497x-jcxf-m478	<1.16.4-r2
L CVE-2026-39820	<1.16.4-r2
L GHSA-p9h5-jm8x-mjm5	<1.16.4-r2
L CVE-2026-39826	<1.16.4-r2
L GHSA-5m4p-2gjx-p2g8	<1.16.4-r2
L CVE-2026-39819	<1.16.4-r2
L CVE-2026-39825	<1.16.4-r2
L GHSA-qf3q-3h68-mmh2	<1.16.4-r2
L GHSA-2283-wf8c-rw8r	<1.16.4-r2
L CVE-2026-42501	<1.16.4-r2
L GHSA-3v2c-x6q9-f697	<1.16.4-r2
L GHSA-xq5j-9r39-c3vf	<1.16.4-r2
L GHSA-qc64-m6c2-v4x7	<1.16.4-r2
H Insufficiently Protected Credentials	<1.16.3-r15
L GHSA-fpjq-c37h-cqcv	<1.16.4-r1
L GHSA-f9g8-6ppc-pqq4	<1.16.4-r1
C Information Exposure	<1.16.4-r1
L Improper Certificate Validation	<1.16.4-r1
L Reachable Assertion	<1.16.4-r1
L GHSA-xm5m-wgh2-rrg3	<1.16.4-r1
L Integer Overflow or Wraparound	<1.16.3-r16
L GHSA-pjcq-xvwq-hhpj	<1.16.3-r16
L GHSA-3xc5-wrhm-f963	<1.16.3-r15
L GHSA-hfvc-g4fc-pqhx	<1.16.3-r14
H Untrusted Search Path	<1.16.3-r14
L Server-Side Request Forgery (SSRF)	<1.16.3-r13
L GHSA-qqrv-2hch-83q4	<1.16.3-r13
L GHSA-78h2-9frx-2jm8	<1.16.3-r12
L Uncaught Exception	<1.16.3-r12
L GHSA-jhf3-xxhw-2wpp	<1.16.3-r11
L Integer Underflow	<1.16.3-r11
L Improper Validation of Array Index	<1.16.3-r11
L GHSA-gm2x-2g9h-ccm8	<1.16.3-r11
L GHSA-p77j-4mvh-x3m3	<1.16.3-r10
L Improper Authorization	<1.16.3-r10
L GHSA-p436-gjf2-799p	<1.16.3-r8
H CVE-2025-15558	<1.16.3-r8
L CVE-2025-61732	<1.16.3-r3
L GHSA-fcv2-xgw5-pqxf	<1.16.3-r2
L Asymmetric Resource Consumption (Amplification)	<1.16.2-r1
L GHSA-273p-m2cw-6833	<1.16.3-r2
L GHSA-f83f-xpx7-ffpw	<1.16.2-r1
L GHSA-h355-32pf-p2xm	<1.16.3-r3
L GHSA-jqc5-w2xx-5vq4	<1.16.3-r2
L GHSA-q9hv-hpm4-hj6x	<1.16.3-r6
L GHSA-whqx-f9j3-ch6m	<1.16.2-r2
L GHSA-j5w8-q4qc-rx2x	<1.16.0-r2
C CVE-2026-1229	<1.16.3-r6
L CVE-2025-47914	<1.16.0-r2
L GHSA-fphv-w9fq-2525	<1.16.3-r2
L Asymmetric Resource Consumption (Amplification)	<1.16.2-r2
L Untrusted Search Path	<1.16.3-r7
L GHSA-4qg8-fj49-pxjh	<1.16.2-r2
M Directory Traversal	<1.16.3-r2
L GHSA-9h8m-3fm2-qjrq	<1.16.3-r7
L Server-Side Request Forgery (SSRF)	<1.16.3-r2
M Insufficient Verification of Data Authenticity	<1.16.2-r2
L GHSA-8jvr-vh7g-f8gx	<1.16.3-r3
L GHSA-f6x5-jh6r-wrfv	<1.16.0-r2
C CVE-2025-68121	<1.16.3-r3
L CVE-2025-58181	<1.16.0-r2
L NULL Pointer Dereference	<1.16.3-r2
L Directory Traversal	<1.16.3-r2
M Improper Validation of Integrity Check Value	<1.16.3-r4
L GHSA-4c4x-jm2x-pf9j	<1.16.3-r2
L GHSA-846p-jg2w-w324	<1.16.3-r2
L GHSA-37cx-329c-33x3	<1.16.3-r4
H Improper Verification of Cryptographic Signature	<1.16.3-r2
H Reachable Assertion	<1.16.3-r2

Vulnerability

Vulnerable Version

GHSA-pmwq-pjrm-6p5r

<1.16.4-r3