Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to versions 1.18.0-rc1, 1.17.2-rc1, and 1.16.4, Kyverno's apiCall feature in ClusterPolicy automatically attaches the admission controller's ServiceAccount token to outgoing HTTP requests. The service URL has no validation — it can point anywhere, including attacker-controlled servers. Since the admission controller SA has permissions to patch webhook configurations, a stolen token leads to full cluster compromise. Versions 1.18.0-rc1, 1.17.2-rc1, and 1.16.4 patch the issue.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/41xxx/CVE-2026-41323.json",
"cna_assigner": "GitHub_M",
"cwe_ids": [
"CWE-200",
"CWE-918"
],
"unresolved_ranges": [
{
"extracted_events": [
{
"introduced": "1.17.0-rc1"
},
{
"fixed": "1.17.2-rc1"
}
],
"source": "AFFECTED_FIELD"
}
]
}{
"cpe": [
"cpe:2.3:a:kyverno:kyverno:*:-:*:*:*:*:*:*",
"cpe:2.3:a:kyverno:kyverno:*:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "1.16.4"
},
{
"introduced": "1.17.0"
},
{
"fixed": "1.17.2"
}
],
"source": [
"CPE_RANGE",
"REFERENCES"
]
}