Threats Tagged 'cve-2026-22872'
View all threats tagged with 'cve-2026-22872'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-22872'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-22872: CWE-20: Improper Input Validation in projectcapsule capsuleCVE-2026-22872 0 CVE-2026-22872 is a medium severity vulnerability in projectcapsule's Capsule framework prior to version 0. 13. 0. The Capsule Controller runs with cluster-admin privileges and improperly validates input when processing TenantResource RawItems. This allows tenant administrators with Tenant Owner privileges to create cluster-scoped resources they normally cannot, leading to cross-tenant privilege escalation and potential cluster-level attacks. The vulnerability is mitigated in version 0. 13. 0. Exploitation requires specific conditions including the default cluster-admin privilege configuration and the absence of additional admission controllers blocking malicious resources. Join the discussion | CVE Database V5 | 06/01/2026, 17:42:38 UTC Added: 06/01/2026, 19:52:33 UTC |
Showing 1 to 1 of 1 result