Get the latest, first
arrowBlog
  • Home
  • Blog
  • Kyverno’s container image signature verification can be bypassed
    CVE-2022-47633
Kyverno’s container image signature verification can be bypassed <br data-lazy-src=

Dec 21, 2022 – The vulnerability enables an attacker who is either running a malicious container image registry or is able to act as a proxy between the registry and Kyverno, to inject unsigned images into the protected cluster, bypassing the image verification policy. 

Related Articles

  • Apr 29, 2025

ARMO vs. Wiz: Bridging the Gap in Cloud Runtime Security

The recent news about Google’s multi-billion-dollar acquisition of Wiz has sparked widespread conversation across the...

Oshrat Nir

Head of Product Marketing
  • Apr 24, 2025

io_uring Is Back, This Time as a Rootkit

ARMO researchers reveal a major blind spot in Linux runtime security tools caused by the...

Amit Schendel

Head of Security Research
  • Apr 23, 2025

ARMO CADR Uncovers Multiple Crypto Miner Attack Operations

Introduction: Luring in the Threat Actors The best way to understand real-world attacks is to...

Amit Schendel

Head of Security Research
Close

Join the First Cloud Runtime Security Summit

Save your Spot city
slack_logos Continue to Slack

Get the information you need directly from our experts!

new-messageContinue as a guest