lisinopriltabs.com Cross Site Scripting vulnerability OBB-3927641
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
demonstrations.wolfram.com Cross Site Scripting vulnerability OBB-3927640
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
Exploit for Code Injection in Crushftp
CVE-2024-4040 PoC Python exploit for CVE-2024-4040...
10CVSS
8.6AI Score
0.959EPSS
mpmoil.com Cross Site Scripting vulnerability OBB-3927639
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
Summary IBM HTTP Server (powered by Apache) used by IBM i is vulnerable to a denial of service attack due to mishandling of multiplexed streams in HTTP/2 protocol as described in the vulnerability details section. This bulletin identifies the steps to take to address the vulnerability as described....
7.5CVSS
7AI Score
0.72EPSS
An flaw was found in the OpenStack Platform (RHOSP) director, a toolset for installing and managing a complete RHOSP environment. Plaintext passwords may be stored in log files, which can expose sensitive information to anyone with access to the...
6.5AI Score
reservar.vayacamping.net Cross Site Scripting vulnerability OBB-3927638
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
Internal Emails Reveal How a Controversial Gun-Detection AI System Found Its Way to NYC
NYC mayor Eric Adams wants to test Evolv’s gun-detection tech in subway stations—despite the company saying it’s not designed for that environment. Emails obtained by WIRED show how the company still found an...
7.3AI Score
sgrh.com Cross Site Scripting vulnerability OBB-3927635
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
premiumdata.net Cross Site Scripting vulnerability OBB-3927634
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
jeu-de-puzzle.net Cross Site Scripting vulnerability OBB-3927632
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
matrix-rust-sdk contains a log exposure of private key of the server-side key backup
Introduction In Matrix, the server-side key backup stores encrypted copies of Matrix message keys. This facilitates key sharing between a user's devices and provides a redundant copy in case all devices are lost. The key backup uses asymmetric cryptography, with each server-side key backup...
7AI Score
matrix-rust-sdk contains a log exposure of private key of the server-side key backup
Introduction In Matrix, the server-side key backup stores encrypted copies of Matrix message keys. This facilitates key sharing between a user's devices and provides a redundant copy in case all devices are lost. The key backup uses asymmetric cryptography, with each server-side key backup...
7AI Score
beckerdesign.net Cross Site Scripting vulnerability OBB-3927631
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
gourmetaway.net Cross Site Scripting vulnerability OBB-3927629
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: trillian, k8ssandra-operator, dockerize-fips, cni-plugins-fips, dagger, node-problem-detector, traefik-fips, kubernetes-csi-node-driver-registrar-fips, cluster-autoscaler-fips, nri-f5, flux-kustomize-controller-0.37, dgraph, wire-go, chartmuseum,...
7.3AI Score
GHSA-HQ6Q-C2X6-HMCH vulnerabilities
Vulnerabilities for packages: spark-operator, prometheus-adapter, cluster-autoscaler-fips, calico-fips, kubernetes-dns-node-cache, nodetaint, argo-cd-fips, aws-ebs-csi-driver, calico, aws-efs-csi-driver-fips, cluster-autoscaler, aws-efs-csi-driver,...
7.3AI Score
CVE-2023-39323 vulnerabilities
Vulnerabilities for packages: smarter-device-manager-fips, kind, metrics-server, configmap-reload-fips,...
8.1CVSS
8.1AI Score
0.002EPSS
7.3AI Score
Vulnerabilities for packages: zot, conftest, terraform, tfsec, conftest-fips, kubescape, terraform-fips, opentofu, k9s, zarf,...
9.8CVSS
9.6AI Score
0.0004EPSS
CVE-2019-11255 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-provisioner,...
6.5CVSS
6.5AI Score
0.004EPSS
CVE-2022-29526 vulnerabilities
Vulnerabilities for packages: grpcurl, dynamic-localpv-provisioner, eks-distro-coredns, k3d, kind, dynamic-localpv-provisioner-fips,...
5.3CVSS
8.9AI Score
0.002EPSS
GHSA-69CH-W2M2-3VJP vulnerabilities
Vulnerabilities for packages: grpcurl, seldon-core-operator, dynamic-localpv-provisioner, gitleaks, hey, eks-distro-coredns, k3d, py3-seldon-core, vt-cli, dynamic-localpv-provisioner-fips,...
7.3AI Score
GHSA-VVPX-J8F3-3W6H vulnerabilities
Vulnerabilities for packages: grpcurl, wireguard-go, seldon-core-operator, dynamic-localpv-provisioner, go, hey, eks-distro-coredns, falco, gke-gcloud-auth-plugin, kyverno, restic, k3d, py3-seldon-core, dynamic-localpv-provisioner-fips,...
7.3AI Score
GHSA-7F9X-GW85-8GRF vulnerabilities
Vulnerabilities for packages: istio-operator-fips, falcoctl, istio-pilot-discovery, istio-pilot-agent-fips, istio-pilot-discovery-fips, istio-operator, kyverno, kubescape, istio-pilot-agent, tekton-chains, istio-cni-fips, falcoctl-fips, cosign-fips, vexctl, gitsign, istio-cni, falco,...
7.3AI Score
CVE-2022-41723 vulnerabilities
Vulnerabilities for packages: grpcurl, wireguard-go, seldon-core-operator, dynamic-localpv-provisioner, go, hey, eks-distro-coredns, falco, gke-gcloud-auth-plugin, kyverno, restic, k3d, py3-seldon-core, dynamic-localpv-provisioner-fips,...
7.5CVSS
8.1AI Score
0.02EPSS
7.3AI Score
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: timestamp-authority-fips, vault-fips, tekton-pipelines, istio-pilot-discovery, istio-pilot-discovery-fips, spire-server-fips, cloudflared, flux-kustomize-controller, kubescape, kyverno, spire-server, vexctl, falco, tkn, flux-source-controller, cosign, rekor,...
7.3AI Score
CVE-2024-28122 vulnerabilities
Vulnerabilities for packages: mc-fips, mc, falcoctl, istio-pilot-discovery, istio-pilot-discovery-fips, spire-server-fips, kyverno, external-secrets-fips, spire-server, falco, istio-operator-fips, istio-pilot-agent, istio-cni-fips, falcoctl-fips, boring-registry-fips, istio-pilot-agent-fips,...
6.8CVSS
6.7AI Score
0.0004EPSS
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: go-ipfs-fips, trillian, istio-pilot-discovery, k8ssandra-operator, dagger, node-problem-detector, traefik-fips, kubernetes-csi-node-driver-registrar-fips, cluster-autoscaler-fips, influxd, flux-kustomize-controller-0.37, gpu-operator, dgraph, chartmuseum,...
7.3AI Score
7.3AI Score
CVE-2023-45290 vulnerabilities
Vulnerabilities for packages: trillian, k8ssandra-operator, dockerize-fips, cni-plugins-fips, dagger, node-problem-detector, traefik-fips, kubernetes-csi-node-driver-registrar-fips, cluster-autoscaler-fips, nri-f5, flux-kustomize-controller-0.37, dgraph, wire-go, chartmuseum,...
7.5AI Score
0.0004EPSS
CVE-2024-24785 vulnerabilities
Vulnerabilities for packages: trillian, k8ssandra-operator, dockerize-fips, cni-plugins-fips, dagger, node-problem-detector, traefik-fips, kubernetes-csi-node-driver-registrar-fips, cluster-autoscaler-fips, nri-f5, flux-kustomize-controller-0.37, dgraph, wire-go, chartmuseum,...
7.5AI Score
0.0004EPSS
Vulnerabilities for packages: spark-operator, kubernetes-csi-driver-hostpath, kubernetes, cluster-autoscaler-fips, calico-fips, kubernetes-dns-node-cache, local-static-provisioner, aws-ebs-csi-driver-fips, aws-ebs-csi-driver, calico, node-feature-discovery, nodetaint, aws-efs-csi-driver-fips,...
2.7CVSS
3.5AI Score
0.0004EPSS
GHSA-Q78C-GWQW-JCMC vulnerabilities
Vulnerabilities for packages: cluster-autoscaler-fips, calico-fips, aws-ebs-csi-driver, calico, aws-efs-csi-driver-fips, cluster-autoscaler, argo-cd, aws-efs-csi-driver,...
7.3AI Score
Vulnerabilities for packages: cluster-autoscaler-fips, calico-fips, aws-ebs-csi-driver, calico, aws-efs-csi-driver-fips, cluster-autoscaler, argo-cd, aws-efs-csi-driver,...
8.8CVSS
8.8AI Score
0.001EPSS
GHSA-C5PJ-MQFH-RVC3 vulnerabilities
Vulnerabilities for packages: buildah, cadvisor-fips, wolfictl, newrelic-infrastructure-agent, ingress-nginx-controller-fips,...
7.3AI Score
GHSA-XJP4-HW94-MVP5 vulnerabilities
Vulnerabilities for packages: trino, cassandra-reaper-jre-bcfips,...
7.3AI Score
CVE-2024-29131 vulnerabilities
Vulnerabilities for packages: trino, cassandra-reaper-jre-bcfips,...
6.9AI Score
0.0004EPSS
GHSA-679V-HH23-H5JH vulnerabilities
Vulnerabilities for packages: smarter-device-manager-fips, kind, metrics-server, configmap-reload-fips,...
7.3AI Score
CVE-2024-21664 vulnerabilities
Vulnerabilities for packages: mc, falcoctl, istio-pilot-discovery, istio-pilot-discovery-fips, spire-server-fips, kyverno, external-secrets-fips, kubescape, spire-server, vexctl, falco, istio-operator-fips, tekton-chains, istio-pilot-agent, istio-cni-fips, falcoctl-fips, cosign-fips, gitsign,...
7.5CVSS
7.6AI Score
0.001EPSS
CVE-2022-21698 vulnerabilities
Vulnerabilities for packages: dynamic-localpv-provisioner-fips, eks-distro-coredns,...
7.5CVSS
10AI Score
0.005EPSS
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: karpenter, external-dns, aws-load-balancer-controller-fips, prometheus, mc, prometheus-statsd-exporter-fips, trillian, aws-ebs-csi-driver, pulumi-language-dotnet, terraform, kyverno-policy-reporter-ui, istio-pilot-discovery, wavefront-collector-for-kubernetes,...
7.5CVSS
8.2AI Score
0.002EPSS
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: prometheus-statsd-exporter-fips, aws-ebs-csi-driver, kyverno-policy-reporter-ui, petname, helm-push, goreleaser, cni-plugins-fips, kubernetes-csi-node-driver-registrar-fips, flannel-cni-plugin, cortex, ctop, cluster-autoscaler-fips, prometheus-beat-exporter-fips,...
7.5CVSS
7.6AI Score
0.001EPSS
CVE-2023-47108 vulnerabilities
Vulnerabilities for packages: kubernetes, docker-compose, kine, temporal, envoy-ratelimit, aws-ebs-csi-driver, kubevela, kyverno, kubescape, temporal-server-fips, cri-tools, containerd, kubernetes-fips, prometheus-adapter-fips, cert-manager-fips, cluster-autoscaler-fips, kube-oidc-proxy, k3s,...
7.5CVSS
7.6AI Score
0.001EPSS
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: karpenter, external-dns, prometheus, grype, mc, terraform, pulumi-language-dotnet, kyverno-policy-reporter-ui, terraform-provider-azurerm, vault-k8s-fips, tctl, prometheus-adapter, node-problem-detector, istio-envoy, cosign, external-dns-fips,...
7.5CVSS
7.9AI Score
0.72EPSS
CVE-2024-27289 vulnerabilities
Vulnerabilities for packages: caddy, kots, trillian, wavefront-collector-for-kubernetes, vault, argo-workflows, step-ca, trillian-fips, telegraf, argo-workflows-fips,...
8.1CVSS
8.1AI Score
0.0004EPSS
3.3CVSS
6AI Score
0.001EPSS
CVE-2024-21626 vulnerabilities
Vulnerabilities for packages: kubernetes, grype, skaffold, nvidia-device-plugin, kubescape, zarf, datadog-agent-fips, nvidia-device-plugin-fips, buildkitd, newrelic-infrastructure-agent, skopeo, syft, ctop, docker, kubernetes-fips, trivy, cadvisor, k3s, kaniko, ingress-nginx-controller, telegraf,.....
8.6CVSS
7.3AI Score
0.051EPSS
GHSA-C5Q2-7R4C-MV6G vulnerabilities
Vulnerabilities for packages: istio-pilot-discovery, cloudflared, spire-server-fips, spire-server, step, goreleaser, tkn, traefik-fips, cosign, tekton-chains, rook, istio-pilot-agent-fips, istio-operator, external-secrets-operator, grafana, cert-manager, zot, timestamp-authority, keda, step-ca,...
7.3AI Score