PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS
PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, gitness, gitlab-shell, kubernetes-ingress-defaultbackend, stakater-reloader, telegraf, rqlite, keda, kiam, prometheus-redis-exporter-fips, kube-fluentd-operator, tctl, bank-vaults, pulumi-kubernetes-operator, cert-manager-fips,...
7.5CVSS
8.2AI Score
0.002EPSS
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, gitness, cilium-envoy, gitlab-shell, stakater-reloader, telegraf, rqlite, kiam, keda, prometheus-redis-exporter-fips, calico, tctl, envoy-ratelimit, pulumi-kubernetes-operator, bank-vaults-fips, ip-masq-agent, terraform-provider-azurerm,.....
7.5CVSS
7.8AI Score
0.739EPSS
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: paranoia, kubernetes-dns-node-cache, grafana-operator, kubernetes-csi-external-attacher, dive, delve, petname, nri-kafka, aws-flb-cloudwatch, hubble-ui, kubeflow-pipelines, thanos, tctl, kine, prometheus-adapter, kyverno-policy-reporter, prometheus-bind-exporter, fq,.....
7.7AI Score
0.0004EPSS
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, cilium-envoy, flannel-cni-plugin, stakater-reloader, prometheus-redis-exporter-fips, go-md2man, tigera-operator, render-template, bank-vaults-fips, ip-masq-agent, influx, mage, aws-flb-cloudwatch, smarter-device-manager-fips,...
7.5CVSS
7.6AI Score
0.001EPSS
GHSA-VVPX-J8F3-3W6H vulnerabilities
Vulnerabilities for packages: kyverno, eks-distro-coredns, k3d, grpcurl, kube-state-metrics, py3-seldon-core, dynamic-localpv-provisioner, go, wireguard-go, seldon-core-operator, gke-gcloud-auth-plugin, falco, restic, dynamic-localpv-provisioner-fips,...
7.3AI Score
CVE-2022-41723 vulnerabilities
Vulnerabilities for packages: kyverno, eks-distro-coredns, k3d, grpcurl, kube-state-metrics, py3-seldon-core, dynamic-localpv-provisioner, go, wireguard-go, seldon-core-operator, gke-gcloud-auth-plugin, falco, restic, dynamic-localpv-provisioner-fips,...
7.5CVSS
8.1AI Score
0.02EPSS
CVE-2024-21626 vulnerabilities
Vulnerabilities for packages: skopeo, nerdctl, k3s, newrelic-infrastructure-agent, zarf, kots, ingress-nginx-controller, kubernetes, zot, grype, skaffold, syft, nvidia-device-plugin, telegraf, wolfictl, runc, trivy, k9s, kaniko, ctop, docker, k3d, cadvisor, kubescape, buildkitd,...
8.6CVSS
9.2AI Score
0.051EPSS
GHSA-VVPX-J8F3-3W6H vulnerabilities
Vulnerabilities for packages: falco, restic, dynamic-localpv-provisioner, hey, k3d, grpcurl, wireguard-go, gke-gcloud-auth-plugin,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, rook, kiam, rekor, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, pulumi-kubernetes-operator, kube-rbac-proxy-fips, istio-pilot-discovery, nodetaint, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.3AI Score
CVE-2023-45290 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.5AI Score
0.0004EPSS
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.3AI Score
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-attacher, tomcat, terraform-provider-aws, thanos, flux-source-controller, tctl, kyverno, atlantis, prometheus-adapter, prometheus-bind-exporter, influxd, mc, calico, cortex, oauth2-proxy, kubernetes-csi-node-driver-registrar, stakater-reloader,....
7.5CVSS
8.2AI Score
0.739EPSS
CVE-2024-24785 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.5AI Score
0.0004EPSS
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, grafana-operator, kubernetes-csi-external-attacher, terraform-provider-aws, hubble-ui, flux-source-controller, kubeflow-pipelines, thanos, tctl, kine, kyverno, trust-manager, atlantis, newrelic-nri-kube-events, prometheus-adapter, vault,...
7.5AI Score
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, rook, kiam, rekor, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, pulumi-kubernetes-operator, kube-rbac-proxy-fips, istio-pilot-discovery, nodetaint, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
5.8AI Score
0.0004EPSS
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard-metrics-scraper, petname, ip-masq-agent, local-path-provisioner, aws-flb-cloudwatch, grpcurl, aactl, nsc, docker-cli, sbom-scorecard, metrics-server, prometheus-bind-exporter, aws-flb-kinesis, aws-flb-firehose, cass-operator, falco, sonobuoy, hey,....
7.5CVSS
7.9AI Score
0.001EPSS
GHSA-32CH-6X54-Q4H9 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.3AI Score
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.5AI Score
0.0004EPSS
CVE-2024-24783 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.5AI Score
0.0004EPSS
Vulnerabilities for packages: kubernetes-csi-external-attacher, dive, thanos, flux-source-controller, tctl, kyverno, trust-manager, prometheus-adapter, vault, prometheus-bind-exporter, influxd, prometheus-alertmanager, crossplane-provider-azure, mc, apko, runc, oauth2-proxy,...
6.1CVSS
7.7AI Score
0.001EPSS
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, grafana-operator, kubernetes-csi-external-attacher, terraform-provider-aws, hubble-ui, flux-source-controller, kubeflow-pipelines, thanos, tctl, kine, kyverno, trust-manager, atlantis, newrelic-nri-kube-events, prometheus-adapter, vault,...
6.2AI Score
0.0004EPSS
GHSA-5F94-VHJQ-RPG8 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, cilium-envoy, flannel-cni-plugin, stakater-reloader, prometheus-redis-exporter-fips, go-md2man, tigera-operator, render-template, bank-vaults-fips, ip-masq-agent, influx, mage, aws-flb-cloudwatch, smarter-device-manager-fips,...
7.3AI Score
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: paranoia, kubernetes-dns-node-cache, grafana-operator, kubernetes-csi-external-attacher, dive, delve, petname, nri-kafka, aws-flb-cloudwatch, hubble-ui, kubeflow-pipelines, thanos, tctl, kine, prometheus-adapter, kyverno-policy-reporter, prometheus-bind-exporter, fq,.....
7.5AI Score
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: paranoia, kubernetes-dns-node-cache, grafana-operator, kubernetes-csi-external-attacher, dive, delve, petname, nri-kafka, aws-flb-cloudwatch, hubble-ui, kubeflow-pipelines, thanos, tctl, kine, prometheus-adapter, kyverno-policy-reporter, prometheus-bind-exporter, fq,.....
7.7AI Score
0.0004EPSS
CVE-2022-41723 vulnerabilities
Vulnerabilities for packages: falco, restic, dynamic-localpv-provisioner, hey, k3d, grpcurl, wireguard-go, gke-gcloud-auth-plugin,...
7.5CVSS
8.4AI Score
0.02EPSS
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: paranoia, grafana-operator, aws-flb-cloudwatch, tctl, newrelic-nri-statsd, croc, prometheus-adapter, fq, gitlab-kas, protoc-gen-go-grpc, nri-postgresql, apko, gosu, confluent-common-docker, vt-cli, calico, flux-image-automation-controller, gh, stakater-reloader, k9s,.....
6.2AI Score
0.0004EPSS
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: cortex-fips, kubernetes-csi-livenessprobe, kiam, rekor, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, istio-pilot-discovery, nodetaint, cadvisor-fips, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s,...
5.8AI Score
0.0004EPSS
CVE-2024-21626 vulnerabilities
Vulnerabilities for packages: kaniko, k3d, telegraf, kots, wolfictl, nvidia-device-plugin-fips, ctop, kubernetes, zarf, syft, k9s, newrelic-infrastructure-agent, nvidia-device-plugin, cadvisor, ingress-nginx-controller, trivy, runc, grype, skopeo, datadog-agent-fips, k3s, buildkitd,...
8.6CVSS
9AI Score
0.051EPSS
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: cortex-fips, kubernetes-csi-livenessprobe, kiam, rekor, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, istio-pilot-discovery, nodetaint, cadvisor-fips, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s,...
7.3AI Score
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: paranoia, grafana-operator, aws-flb-cloudwatch, tctl, newrelic-nri-statsd, croc, prometheus-adapter, fq, gitlab-kas, protoc-gen-go-grpc, nri-postgresql, apko, gosu, confluent-common-docker, vt-cli, calico, flux-image-automation-controller, gh, stakater-reloader, k9s,.....
7.5AI Score
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.3AI Score
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, kubernetes-csi-external-attacher, dive, thanos, flux-source-controller, tctl, kyverno, trust-manager, atlantis, prometheus-adapter, vault, prometheus-bind-exporter, influxd, prometheus-alertmanager, crossplane-provider-azure, mc, apko,...
7.5CVSS
8.4AI Score
0.002EPSS
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.5AI Score
0.0004EPSS
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, kiam, calico, tctl, nri-kubernetes, nvidia-device-plugin-fips, shfmt, pulumi-kubernetes-operator, kube-rbac-proxy-fips, nodetaint, aws-flb-cloudwatch, kubernetes-csi-external-provisioner, vault-k8s, nuclei, kine,...
7.3AI Score
CVE-2023-39326 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, cilium-envoy, flannel-cni-plugin, stakater-reloader, prometheus-redis-exporter-fips, go-md2man, tigera-operator, render-template, bank-vaults-fips, ip-masq-agent, influx, mage, aws-flb-cloudwatch, smarter-device-manager-fips,...
5.3CVSS
6.8AI Score
0.001EPSS
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: paranoia, kubernetes-dns-node-cache, grafana-operator, kubernetes-csi-external-attacher, dive, delve, petname, nri-kafka, aws-flb-cloudwatch, hubble-ui, kubeflow-pipelines, thanos, tctl, kine, prometheus-adapter, kyverno-policy-reporter, prometheus-bind-exporter, fq,.....
7.5AI Score
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: paranoia, kubernetes-dns-node-cache, grafana-operator, kubernetes-csi-external-attacher, dive, delve, petname, nri-kafka, aws-flb-cloudwatch, hubble-ui, kubeflow-pipelines, thanos, tctl, kine, prometheus-adapter, kyverno-policy-reporter, prometheus-bind-exporter, fq,.....
7.5AI Score
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: paranoia, kubernetes-dns-node-cache, grafana-operator, kubernetes-csi-external-attacher, dive, delve, petname, nri-kafka, aws-flb-cloudwatch, hubble-ui, kubeflow-pipelines, thanos, tctl, kine, prometheus-adapter, kyverno-policy-reporter, prometheus-bind-exporter, fq,.....
7.5AI Score
GHSA-XR7R-F8XQ-VFVV vulnerabilities
Vulnerabilities for packages: kaniko, k3d, telegraf, kots, wolfictl, nvidia-device-plugin-fips, ctop, kubernetes, zarf, syft, k9s, newrelic-infrastructure-agent, nvidia-device-plugin, cadvisor, ingress-nginx-controller, trivy, runc, grype, skopeo, datadog-agent-fips, k3s, buildkitd,...
7.3AI Score
CVE-2023-44487 affecting package sriov-network-device-plugin for versions less than 3.5.1-2
CVE-2023-44487 affecting package sriov-network-device-plugin for versions less than 3.5.1-2. A patched version of the package is...
7.5CVSS
8.2AI Score
0.739EPSS
CVE-2023-39326 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard-metrics-scraper, petname, ip-masq-agent, local-path-provisioner, aws-flb-cloudwatch, grpcurl, aactl, nsc, docker-cli, sbom-scorecard, metrics-server, prometheus-bind-exporter, aws-flb-kinesis, aws-flb-firehose, cass-operator, falco, sonobuoy, hey,....
5.3CVSS
7.2AI Score
0.001EPSS
GHSA-9F76-WG39-X86H vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard-metrics-scraper, petname, ip-masq-agent, local-path-provisioner, aws-flb-cloudwatch, grpcurl, aactl, nsc, docker-cli, sbom-scorecard, metrics-server, prometheus-bind-exporter, aws-flb-kinesis, aws-flb-firehose, cass-operator, falco, sonobuoy, hey,....
7.5AI Score
GHSA-5F94-VHJQ-RPG8 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard-metrics-scraper, petname, ip-masq-agent, local-path-provisioner, aws-flb-cloudwatch, grpcurl, aactl, nsc, docker-cli, sbom-scorecard, metrics-server, prometheus-bind-exporter, aws-flb-kinesis, aws-flb-firehose, cass-operator, falco, sonobuoy, hey,....
7.5AI Score
GHSA-4374-P667-P6C8 vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, kubernetes-csi-external-attacher, dive, thanos, flux-source-controller, tctl, kyverno, trust-manager, atlantis, prometheus-adapter, vault, prometheus-bind-exporter, influxd, prometheus-alertmanager, crossplane-provider-azure, mc, apko,...
7.5AI Score
GHSA-2WRH-6PVC-2JM9 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-attacher, dive, thanos, flux-source-controller, tctl, kyverno, trust-manager, prometheus-adapter, vault, prometheus-bind-exporter, influxd, prometheus-alertmanager, crossplane-provider-azure, mc, apko, runc, oauth2-proxy,...
7.5AI Score
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-attacher, tomcat, terraform-provider-aws, thanos, flux-source-controller, tctl, kyverno, atlantis, prometheus-adapter, prometheus-bind-exporter, influxd, mc, calico, cortex, oauth2-proxy, kubernetes-csi-node-driver-registrar, stakater-reloader,....
7.5AI Score
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: conftest, kubernetes-csi-external-attacher, ko, pulumi, terraform-provider-aws, terraform, flux-notification-controller, thanos, aactl, flux-source-controller, flux-helm-controller, pulumi-language-yaml, tctl, kots, gitlab-pages, secrets-store-csi-driver,...
7.5AI Score
GHSA-4374-P667-P6C8 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-livenessprobe, gitness, gitlab-shell, kubernetes-ingress-defaultbackend, stakater-reloader, telegraf, rqlite, keda, kiam, prometheus-redis-exporter-fips, kube-fluentd-operator, tctl, bank-vaults, pulumi-kubernetes-operator, cert-manager-fips,...
7.3AI Score