6.5

CVE-2026-25542

Exploit

EPSS 0.03%
Veröffentlicht 21.04.2026 16:05:43
Zuletzt bearbeitet 01.05.2026 16:33:50
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Tekton Pipelines: VerificationPolicy regex pattern bypass via substring matching

Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. From 0.43.0 to 1.11.0, trusted resources verification policies match a resource source string (refSource.URI) against spec.resources[].pattern using regexp.MatchString. In Go, regexp.MatchString reports a match if the pattern matches anywhere in the string, so common unanchored patterns (including examples in tekton documentation) can be bypassed by attacker-controlled source strings that contain the trusted pattern as a substring. This can cause an unintended policy match and change which verification mode/keys apply.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linuxfoundation ≫ Tekton Pipelines SwPlatformgo Version >= 0.43.0 < 1.11.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.098

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CWE-185 Incorrect Regular Expression

The product specifies a regular expression in a way that causes data to be improperly matched or compared.

https://github.com/tektoncd/pipeline/security/advisories/GHSA-rmx9-2pp3-xhcr

Vendor Advisory

Exploit

https://github.com/tektoncd/pipeline/commit/b8905600322aa86327baae0a7c04d6cf1207362a

Patch

https://nvd.nist.gov/vuln/detail/CVE-2026-25542

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-25542

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-25542

EUVD