Content Writer & ChatGPT & Image Generator & WooCommerce Product Writer & AI Training Security Vulnerabilities

Incident response analyst report 2023

Incident response analyst report 2023 As an information security company, our services include incident response and investigation, and malware analysis. Our customer base spans Russia, Europe, Asia, South and North America, Africa and the Middle East. Our annual Incident Response Report presents.....

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, kube-fluentd-operator, sigstore-scaffolding, calico-fips, gitness, vault-csi-provider, yq, azure-aad-pod-identity-mic, falcoctl-fips, pulumi, mc, rqlite, kubernetes-dashboard, vertical-pod-autoscaler, kaf, kubernetes-csi-external-attacher, k3d,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, vault-csi-provider, sigstore-scaffolding, calico-fips, gitness, falcoctl-fips, pulumi, mc, rqlite, kaf, kubernetes-csi-external-attacher, nodetaint, flux-kustomize-controller, gomplate, aws-efs-csi-driver, terraform-provider-azurerm, oauth2-proxy,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, kube-fluentd-operator, vault-csi-provider, kor, calico-fips, rqlite, kaf, kubernetes-csi-driver-hostpath, aws-efs-csi-driver, rclone, cortex, flux-kustomize-controller-0.37, prometheus-operator, rekor-fips, kubeflow-katib, grpcurl,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: dex, rekor, temporal-server, terraform, melange, influx, slsa-verifier, certificate-transparency, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, gitsign, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-prometheus, grype,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, kube-fluentd-operator, vault-csi-provider, kor, calico-fips, rqlite, kaf, kubernetes-csi-driver-hostpath, aws-efs-csi-driver, rclone, cortex, flux-kustomize-controller-0.37, prometheus-operator, rekor-fips, kubeflow-katib, grpcurl,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: dex, terraform, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, nri-prometheus, stakater-reloader, k8sgpt, thanos, prometheus-stackdriver-exporter, secrets-store-csi-driver-provider-gcp, helm, keda, coredns, bank-vaults, prometheus-adapter,....

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: dex, rekor, temporal-server, terraform, melange, slsa-verifier, certificate-transparency, crossplane-provider-azure, gitsign, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, grype, grpc-health-probe, thanos, prometheus-stackdriver-exporter, helm, buf,...

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: aactl, kubeflow-katib, dagger, kyverno, slsa-verifier, gitsign, k9s, argo-workflows, bom, docker-credential-gcr, cri-tools, filebeat, istio-pilot-discovery, k8sgpt, helm-operator, k3s, cadvisor, falco, datadog-agent, guac, zarf, helm, crane, kargo, timoni, eksctl,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: dex, rekor, temporal-server, terraform, melange, influx, slsa-verifier, certificate-transparency, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, gitsign, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-prometheus, grype,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, kube-fluentd-operator, kor, calico-fips, velero-plugin-for-csi, rqlite, neuvector-scanner, velero-plugin-for-aws, kaf, kubernetes-csi-driver-hostpath, aws-efs-csi-driver, rclone, cortex, vt-cli, prometheus-operator, rekor-fips, ko-fips,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: temporal-server, melange, gitleaks, aws-efs-csi-driver, crossplane-provider-azure, nri-prometheus, kyverno-policy-reporter, stakater-reloader, rclone, grpc-health-probe, helm-operator, thanos, secrets-store-csi-driver-provider-gcp, cert-manager-webhook-pdns,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: dex, terraform, slsa-verifier, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, nri-prometheus, stakater-reloader, k8sgpt, thanos, prometheus-stackdriver-exporter, secrets-store-csi-driver-provider-gcp, helm, keda, coredns,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

GHSA-9763-4F94-GFCH vulnerabilities

Vulnerabilities for packages: aactl, melange, slsa-verifier, terraform-provider-google, gitsign, apko, flux-source-controller, rclone, terragrunt, falco, sops, spire-server, zarf, tkn, keda, pulumi-kubernetes-operator, flux-notification-controller, actions-runner-controller, policy-controller,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: temporal-server, melange, gitleaks, aws-efs-csi-driver, crossplane-provider-azure, nri-prometheus, kyverno-policy-reporter, stakater-reloader, rclone, grpc-health-probe, helm-operator, thanos, secrets-store-csi-driver-provider-gcp, cert-manager-webhook-pdns,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, kube-fluentd-operator, kor, calico-fips, velero-plugin-for-csi, rqlite, neuvector-scanner, velero-plugin-for-aws, kaf, kubernetes-csi-driver-hostpath, aws-efs-csi-driver, rclone, cortex, vt-cli, prometheus-operator, rekor-fips, ko-fips,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: dex, terraform, slsa-verifier, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, nri-prometheus, stakater-reloader, k8sgpt, thanos, prometheus-stackdriver-exporter, secrets-store-csi-driver-provider-gcp, helm, keda, coredns,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: dex, terraform, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, nri-prometheus, stakater-reloader, k8sgpt, thanos, prometheus-stackdriver-exporter, secrets-store-csi-driver-provider-gcp, helm, keda, coredns, bank-vaults, prometheus-adapter,....

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: dex, rekor, temporal-server, terraform, melange, slsa-verifier, certificate-transparency, crossplane-provider-azure, gitsign, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, grype, grpc-health-probe, thanos, prometheus-stackdriver-exporter, helm, buf,...

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: helm, buildkitd, up, prometheus-fips, k9s, cert-manager, loki, cri-tools, istio-pilot-discovery-fips, falcoctl-fips, pulumi, cadvisor, dagger, istio-operator-fips, kots, skaffold, filebeat, prometheus, zot, guac, filebeat-fips, helm-operator-fips, telegraf, crane,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, kube-fluentd-operator, sigstore-scaffolding, calico-fips, gitness, vault-csi-provider, yq, azure-aad-pod-identity-mic, falcoctl-fips, pulumi, mc, rqlite, kubernetes-dashboard, vertical-pod-autoscaler, kaf, kubernetes-csi-external-attacher, k3d,...

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, kube-fluentd-operator, sigstore-scaffolding, calico-fips, gitness, vault-csi-provider, azure-aad-pod-identity-mic, istio-pilot-discovery-fips, libssh, falcoctl-fips, pulumi, trillian-fips, rqlite, kubernetes-dashboard, tigera-operator,...

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, kube-fluentd-operator, sigstore-scaffolding, calico-fips, gitness, vault-csi-provider, azure-aad-pod-identity-mic, istio-pilot-discovery-fips, libssh, falcoctl-fips, pulumi, trillian-fips, rqlite, kubernetes-dashboard, tigera-operator,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, kube-fluentd-operator, sigstore-scaffolding, vault-csi-provider, gitness, yq, azure-aad-pod-identity-mic, rqlite, pulumi, mc, kubernetes-dashboard, vertical-pod-autoscaler, kaf, kubernetes-csi-external-attacher, k3d, nodetaint,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...

GHSA-JQ35-85CJ-FJ4P vulnerabilities

Vulnerabilities for packages: up, prometheus-fips, loki, cert-manager, flux-source-controller-2.0, falcoctl-fips, k3d, skaffold, prometheus, telegraf, scorecard, tekton-pipelines, bom, slsa-verifier, cert-manager-fips, aactl, flux-image-reflector-controller, chartmuseum, kpt, spire-server-fips,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, kube-fluentd-operator, sigstore-scaffolding, vault-csi-provider, gitness, yq, azure-aad-pod-identity-mic, rqlite, pulumi, mc, kubernetes-dashboard, vertical-pod-autoscaler, kaf, kubernetes-csi-external-attacher, k3d, nodetaint,...

GHSA-9763-4F94-GFCH vulnerabilities

Vulnerabilities for packages: crossplane-provider-aws, terraform-provider-google, gitness, flux-source-controller-2.0, crossplane, pulumi-language-java, falcoctl-fips, pulumi, flux-source-controller, pulumi-language-dotnet, keda, skaffold, zot, flux-kustomize-controller, rclone, melange,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: prometheus-redis-exporter, vault-csi-provider, kor, calico-fips, rqlite, kaf, aws-efs-csi-driver, cortex, vt-cli, flux-kustomize-controller-0.37, prometheus-operator, kubeflow-katib, grpcurl, nri-apache, traefik-fips, influx, gitlab-runner,...

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, up, prometheus-fips, k9s, cert-manager, loki, cri-tools, istio-pilot-discovery-fips, falcoctl-fips, pulumi, cadvisor, dagger, istio-operator-fips, kots, skaffold, filebeat, prometheus, zot, guac, filebeat-fips, helm-operator-fips, telegraf, crane,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: helm, buildkitd, vault-csi-provider, sigstore-scaffolding, calico-fips, gitness, falcoctl-fips, pulumi, mc, rqlite, kaf, kubernetes-csi-external-attacher, nodetaint, flux-kustomize-controller, gomplate, aws-efs-csi-driver, terraform-provider-azurerm, oauth2-proxy,...

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: aactl, kubeflow-katib, dagger, kyverno, slsa-verifier, gitsign, k9s, argo-workflows, bom, docker-credential-gcr, cri-tools, filebeat, istio-pilot-discovery, k8sgpt, helm-operator, k3s, cadvisor, falco, datadog-agent, guac, zarf, helm, crane, kargo, timoni, eksctl,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: dex, go-bindata, temporal-server, terraform, influx, slsa-verifier, volume-modifier-for-k8s, aws-efs-csi-driver, crossplane-provider-azure, prometheus-mongodb-exporter, amass, kyverno-policy-reporter, nri-mysql, grype, nri-prometheus, stakater-reloader, filebeat,...