CVE-2026-4789

Description

Kyverno, versions 1.16.0 and later, are vulnerable to SSRF due to unrestricted CEL HTTP functions.

References

• https://github.com/kyverno/kyverno
• https://kb.cert.org/vuls/id/655822
• https://portswigger.net/web-security/ssrf
• https://www.kb.cert.org/vuls/id/655822