7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.9 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.72 High
EPSS
Percentile
98.0%
Vulnerabilities for packages: helm, buildkitd, vault-csi-provider, sigstore-scaffolding, calico-fips, gitness, falcoctl-fips, pulumi, mc, rqlite, kaf, kubernetes-csi-external-attacher, nodetaint, flux-kustomize-controller, gomplate, aws-efs-csi-driver, terraform-provider-azurerm, oauth2-proxy, cortex, scorecard, flux-kustomize-controller-0.37, kubernetes-csi-external-attacher-fips, cilium-envoy, conftest, kubeflow-katib, grpcurl, spark-operator, gatekeeper-fips, kube-state-metrics, hugo, gitlab-runner, flux-notification-controller-0.37, kubernetes-csi-external-snapshotter, kyverno, bank-vaults-fips, argo-cd, istio-envoy, gitlab-pages, metacontroller, kubernetes-csi-node-driver-registrar-fips, flux-helm-controller, falco, gke-gcloud-auth-plugin, eks-distro-coredns, atlantis-fips, aws-load-balancer-controller, aws-efs-csi-driver-fips, up, secrets-store-csi-driver, cert-manager, calico, git-lfs, ingress-nginx-controller-fips, prometheus-blackbox-exporter, external-dns, kots, karpenter, prometheus, weaviate, hey, envoy-ratelimit, kubernetes-csi-node-driver-registrar, coredns, haproxy-ingress, external-dns-fips, terraform-provider-aws, cosign, grype, ko, pulumi-kubernetes-operator, cluster-autoscaler-fips, nfs-subdir-external-provisioner-fips, nginx-stable, kubevela, kyverno-policy-reporter-ui, smarter-device-manager-fips, dynamic-localpv-provisioner, metrics-server-fips, prometheus-redis-exporter-fips, flux-source-controller, nats, node-problem-detector, influxd, kubernetes-csi-livenessprobe, prometheus-stackdriver-exporter, flux, ip-masq-agent, flux-notification-controller, opentofu, nghttp2, py3-seldon-core, frp, cue, thanos, external-secrets, nvidia-device-plugin, wireguard-go, kpt, pulumi-language-yaml, traefik, atlantis, src, tomcat, stakater-reloader, secrets-store-csi-driver-provider-gcp, vault-k8s-fips, keda, memcached-exporter, volume-modifier-for-k8s-fips, amass, nri-prometheus, cluster-autoscaler, gitlab-shell, kind, dynamic-localpv-provisioner-fips, pulumi-language-java, tctl, kyverno-policy-reporter-kyverno-plugin, gatekeeper, kubernetes-csi-livenessprobe-fips, dotnet, kiam, pulumi-language-dotnet, kyverno-policy-reporter, ollama, skaffold, dgraph, telegraf, kubernetes-csi-external-resizer-fips, gobuster, kube-oidc-proxy, ingress-nginx-controller, newrelic-infrastructure-agent, terraform, bom, metrics-server, kubewatch, prometheus-adapter, prometheus-bind-exporter, slsa-verifier, fuse-overlayfs-snapshotter, nginx-mainline, flux-image-reflector-controller, aactl, dex, minio, configmap-reload-fips, seldon-core-operator, prometheus-elasticsearch-exporter, prometheus-adapter-fips, kubescape, flux-helm-controller-0.37, timestamp-authority-fips, grafana, prometheus-postgres-exporter
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.9 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.72 High
EPSS
Percentile
98.0%