cbcvebase.
CVE-2026-22039
published 2026-01-27

CVE-2026-22039: Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have a critical authorization boundary…

PriorityP267critical9.9CVSS 3.1
AVNACLPRLUINSCCHIHAH
EPSS
0.52%
40.0th percentile
Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have a critical authorization boundary bypass in namespaced Kyverno Policy apiCall. The resolved `urlPath` is executed using the Kyverno admission controller ServiceAccount, with no enforcement that the request is limited to the policy’s namespace. As a result, any authenticated user with permission to create a namespaced Policy can cause Kyverno to perform Kubernetes API requests using Kyverno’s admission controller identity, targeting any API path allowed by that ServiceAccount’s RBAC. This breaks namespace isolation by enabling cross-namespace reads (for example, ConfigMaps and, where permitted, Secrets) and allows cluster-scoped or cross-namespace writes (for example, creating ClusterPolicies) by controlling the urlPath through context variable substitution. Versions 1.16.3 and 1.15.3 contain a patch for the vulnerability.

Affected

7 ranges
VendorProductVersion rangeFixed in
github.comkyverno_kyverno>= 0 < 1.15.31.15.3
github.comkyverno_kyverno0 – 1.17.1
github.comkyverno_kyverno>= 1.16.0-rc.1 < 1.16.31.16.3
kyvernokyverno< 1.17.21.17.2
kyvernokyverno< 1.17.21.17.2
kyvernokyverno< 1.15.31.15.3
kyvernokyverno>= 1.16.0 < 1.16.31.16.3

Detection & IOCsextracted from sources · hover to see the quote

  • Monitor Kyverno policy engine for cross-namespace ConfigMap reads: the `configMap.namespace` field in Kyverno ClusterPolicy/Policy resources accepts any namespace without validation, allowing a namespace-scoped admin to read ConfigMaps from arbitrary namespaces using Kyverno's privileged service account.
  • Alert on Kyverno service account performing cross-namespace ConfigMap GET/LIST operations in Kubernetes audit logs, particularly where the requesting namespace differs from the ConfigMap's namespace — this indicates potential RBAC bypass exploitation.
  • ·The fix for CVE-2026-22039 only patched the `apiCall` context URLPath field; the ConfigMap context loader (`configMap.namespace`) was left unpatched until version 1.17.2. Environments running Kyverno below 1.17.2 remain vulnerable to cross-namespace privilege escalation via the ConfigMap context.
  • ·An updated fix is available in Kyverno version 1.17.2. Upgrade is required to remediate the ConfigMap namespace validation bypass.

CVSS provenance

nvdv3.19.9CRITICALCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
ghsa9.9CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.