Allowing the creation of pods which makes use of kernel level calls using 'sysctl' with value including '+'/'=' makes your cluster vulnerable to CVE-2022-0811.
Make sure your Kubernetes workload configuration's securityContext field does not have 'sysctls' argument and if required, verify it does not have any kernel level call specified with values = ['+', '='].