CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.8AI Score
0.0004EPSS
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: conftest, argo-workflows, slsa-verifier, terraform-docs, ingress-nginx-controller, newrelic-infra-operator, vault-k8s, flannel, prometheus-operator, tctl, zot, pulumi-language-yaml, envoy-ratelimit, certificate-transparency, nri-kubernetes, kine, osv-scanner, gitness,....
7.5AI Score
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, kine, osv-scanner, tigera-operator, smarter-device-manager, doppler-kubernetes-operator, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go,...
6.8AI Score
0.0004EPSS
CVE-2024-24787 vulnerabilities
Vulnerabilities for packages: cue, conftest, ipfs, terraform-docs, node-feature-discovery, wait-for-port, mage, newrelic-infra-operator, harbor-cli, mkcert, flannel, vault-k8s, zot, pulumi-language-yaml, gostatsd, certificate-transparency, delve, render-template, croc, flux-kustomize-controller,...
6.5AI Score
0.0004EPSS
GHSA-5FQ7-4MXC-535H vulnerabilities
Vulnerabilities for packages: cue, conftest, ipfs, terraform-docs, node-feature-discovery, wait-for-port, mage, newrelic-infra-operator, harbor-cli, mkcert, flannel, vault-k8s, zot, pulumi-language-yaml, gostatsd, certificate-transparency, delve, render-template, croc, flux-kustomize-controller,...
7.5AI Score
CVE-2024-24789 vulnerabilities
Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, osv-scanner, smarter-device-manager, doppler-kubernetes-operator, wgcf, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go, kube-logging-operator, grafana,.....
6.5AI Score
0.0004EPSS
Vulnerabilities for packages: cue, vault-k8s, prometheus-operator, tctl, zot, pulumi-language-yaml, flux-kustomize-controller, apko, gitness, prometheus-pushgateway, fuse-overlayfs-snapshotter, k3s, mc, kubernetes-csi-external-attacher, trust-manager, thanos-operator, kube-logging-operator, hugo,.....
6.1CVSS
7.3AI Score
0.001EPSS
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: argo-workflows, slsa-verifier, ctop, dagger, telegraf, zot, docker-credential-gcr, scorecard, traefik, gitsign, policy-controller, timoni, flux-helm-controller, guac, kubescape, loki, datadog-agent, kubevela, cri-tools, nerdctl, k8sgpt, helm-operator, kargo, kyverno,.....
7.8CVSS
7.5AI Score
0.001EPSS
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: conftest, argo-workflows, slsa-verifier, terraform-docs, ingress-nginx-controller, newrelic-infra-operator, vault-k8s, flannel, prometheus-operator, tctl, zot, pulumi-language-yaml, envoy-ratelimit, certificate-transparency, nri-kubernetes, kine, osv-scanner, gitness,....
6.7AI Score
0.0004EPSS
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.8AI Score
0.0004EPSS
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.5AI Score
CVE-2024-35255 vulnerabilities
Vulnerabilities for packages: teleport, argo-workflows, harbor-registry, terragrunt, flux-source-controller, external-secrets-operator, grafana-mimir, telegraf, prometheus-operator, zot, external-dns, traefik, flux-kustomize-controller, policy-controller, flyte, chezmoi, flux, sops, guac, loki,...
5.5CVSS
6.1AI Score
0.0004EPSS
GHSA-M5VV-6R4H-3VJ9 vulnerabilities
Vulnerabilities for packages: teleport, argo-workflows, harbor-registry, terragrunt, flux-source-controller, external-secrets-operator, grafana-mimir, telegraf, prometheus-operator, zot, external-dns, traefik, flux-kustomize-controller, policy-controller, flyte, chezmoi, flux, sops, guac, loki,...
7.5AI Score
CVE-2023-48795 vulnerabilities
Vulnerabilities for packages: libssh2, conftest, argo-workflows, slsa-verifier, terraform-docs, vault-k8s, zot, certificate-transparency, libssh, flux-kustomize-controller, apko, gitness, tigera-operator, dockerize, ko, nerdctl, secrets-store-csi-driver-provider-azure, k3s, cilium-cli,...
5.9CVSS
7.1AI Score
0.962EPSS
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.5AI Score
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.5AI Score
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, kine, osv-scanner, tigera-operator, smarter-device-manager, doppler-kubernetes-operator, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go,...
7.5AI Score
GHSA-2JWV-JMQ4-4J3R vulnerabilities
Vulnerabilities for packages: cue, conftest, ipfs, terraform-docs, node-feature-discovery, wait-for-port, mage, newrelic-infra-operator, harbor-cli, mkcert, flannel, vault-k8s, zot, pulumi-language-yaml, gostatsd, certificate-transparency, delve, render-template, croc, flux-kustomize-controller,...
7.5AI Score
CVE-2024-24790 vulnerabilities
Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, osv-scanner, smarter-device-manager, doppler-kubernetes-operator, wgcf, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go, kube-logging-operator, grafana,.....
6.5AI Score
0.0004EPSS
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, vault-k8s, prometheus-operator, tctl, zot, pulumi-language-yaml, flux-kustomize-controller, apko, gitness, prometheus-pushgateway, kubernetes-dns-node-cache, fuse-overlayfs-snapshotter, k3s, mc, kubernetes-csi-external-attacher, istio-operator,...
7.5CVSS
8.4AI Score
0.002EPSS
GHSA-9763-4F94-GFCH vulnerabilities
Vulnerabilities for packages: slsa-verifier, terragrunt, flux-source-controller, argo-cd, actions-runner-controller, zot, pulumi-language-yaml, scorecard, pulumi-kubernetes-operator, flux-kustomize-controller, gitsign, policy-controller, crossplane, crossplane-provider-aws, flux, apko, gitness,...
7.5AI Score
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.5AI Score
GHSA-49GW-VXVF-FC2G vulnerabilities
Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, osv-scanner, smarter-device-manager, doppler-kubernetes-operator, wgcf, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go, kube-logging-operator, grafana,.....
7.5AI Score
GHSA-4374-P667-P6C8 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, vault-k8s, prometheus-operator, tctl, zot, pulumi-language-yaml, flux-kustomize-controller, apko, gitness, prometheus-pushgateway, kubernetes-dns-node-cache, fuse-overlayfs-snapshotter, k3s, mc, kubernetes-csi-external-attacher, istio-operator,...
7.5AI Score
GHSA-2WRH-6PVC-2JM9 vulnerabilities
Vulnerabilities for packages: cue, vault-k8s, prometheus-operator, tctl, zot, pulumi-language-yaml, flux-kustomize-controller, apko, gitness, prometheus-pushgateway, fuse-overlayfs-snapshotter, k3s, mc, kubernetes-csi-external-attacher, trust-manager, thanos-operator, kube-logging-operator, hugo,.....
7.5AI Score
GHSA-45X7-PX36-X8W8 vulnerabilities
Vulnerabilities for packages: libssh2, conftest, argo-workflows, slsa-verifier, terraform-docs, vault-k8s, zot, certificate-transparency, libssh, flux-kustomize-controller, apko, gitness, tigera-operator, dockerize, ko, nerdctl, secrets-store-csi-driver-provider-azure, k3s, cilium-cli,...
7.5AI Score
CVE-2024-24783 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.8AI Score
0.0004EPSS
GHSA-32CH-6X54-Q4H9 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.5AI Score
CVE-2024-24785 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
7.8AI Score
0.0004EPSS
CVE-2024-24788 vulnerabilities
Vulnerabilities for packages: cue, conftest, ipfs, terraform-docs, node-feature-discovery, wait-for-port, mage, newrelic-infra-operator, harbor-cli, mkcert, flannel, vault-k8s, zot, pulumi-language-yaml, gostatsd, certificate-transparency, delve, render-template, croc, flux-kustomize-controller,...
6.5AI Score
0.0004EPSS
GHSA-236W-P7WF-5PH8 vulnerabilities
Vulnerabilities for packages: argo-workflows, nri-rabbitmq, mkcert, flannel, gostatsd, delve, render-template, flux-kustomize-controller, osv-scanner, smarter-device-manager, doppler-kubernetes-operator, wgcf, k3s, mc, volume-modifier-for-k8s, trivy, protoc-gen-go, kube-logging-operator, grafana,.....
7.5AI Score
GHSA-XW73-RW38-6VJC vulnerabilities
Vulnerabilities for packages: argo-workflows, slsa-verifier, ctop, dagger, telegraf, zot, docker-credential-gcr, scorecard, traefik, gitsign, policy-controller, timoni, flux-helm-controller, guac, kubescape, loki, datadog-agent, kubevela, cri-tools, nerdctl, k8sgpt, helm-operator, kargo, kyverno,.....
7.5AI Score
CVE-2023-45290 vulnerabilities
Vulnerabilities for packages: cue, slsa-verifier, terraform-docs, wait-for-port, ingress-nginx-controller, mage, newrelic-infra-operator, nri-rabbitmq, vault-k8s, prometheus-operator, tctl, pulumi-language-yaml, envoy-ratelimit, nri-memcached, delve, nri-apache, render-template, kine, gitness,...
5.9AI Score
0.0004EPSS
Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized password resets via the resetPassword...
EPSS
EPSS
Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized user information retrieval via the queryUser...
EPSS
Shenzhen Guoxin Synthesis image system before 8.3.0 allows username enumeration because of the response discrepancy of incorrect versus...
EPSS
7AI Score
EPSS
Shenzhen Guoxin Synthesis image system before 8.3.0 allows username enumeration because of the response discrepancy of incorrect versus...
7AI Score
EPSS
Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized user information retrieval via the queryUser...
6.7AI Score
EPSS
Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized password resets via the resetPassword...
7.2AI Score
EPSS
7AI Score
EPSS
7.5AI Score
EPSS
EPSS
EPSS
Updated atril packages fix security vulnerability
Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. A path traversal and arbitrary file write vulnerability exists in versions of Atril prior to 1.26.2. This vulnerability is capable of writing arbitrary files anywhere on the filesystem to which the user....
8.5CVSS
7.5AI Score
0.005EPSS
Updated nss & firefox packages fix security vulnerabilities
Use-after-free in networking. (CVE-2024-5702) Use-after-free in JavaScript object transplant. (CVE-2024-5688) External protocol handlers leaked by timing attack. (CVE-2024-5690) Sandboxed iframes were able to bypass sandbox restrictions to open a new window. (CVE-2024-5691) Cross-Origin Image leak....
7.9AI Score
0.0004EPSS
EPSS
EPSS
Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized password resets via the resetPassword...
EPSS