All-in-One Addons For Elementor – WidgetKit Security Vulnerabilities

PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS

PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...

PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5

PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...

Tuesday, July 2, 2024 Security Releases

Summary The Node.js project will release new versions of the 22.x, 20.x, 18.x releases lines on or shortly after, Tuesday, July 2, 2024 in order to address: 1 high severity issues. 2 medium severity issues. 3 low severity issues. Node.js fetch will be upgraded to undici v6.19.2 on Node.js 18.x...

GHSA-95PR-FXF5-86GV vulnerabilities

Vulnerabilities for packages: falcoctl, falco, slsa-verifier, goreleaser, zarf, melange, vexctl, ko, apko, aactl, gitsign, kubescape, policy-controller, tekton-chains, neuvector-sigstore-interface, spire-server, wolfictl, flux-source-controller, tkn, zot,...

CVE-2024-6104 vulnerabilities

Vulnerabilities for packages: gitlab-runner, influxd, k3s, falcoctl, gitlab-kas, slsa-verifier, opentofu, consul, goreleaser, flux-image-reflector-controller, argo-cd, ksops, terraform, kubernetes-event-exporter, zarf, kargo, opentelemetry-collector-contrib, guac, rook, step-ca, vexctl,...

GHSA-MQ39-4GV4-MVPX vulnerabilities

Vulnerabilities for packages: datadog-agent, syft, goreleaser, grype, kargo, melange, cadvisor, kaniko, ko, conftest, prometheus, aactl, kubescape, telegraf, crossplane, buf, buildkitd, trivy, docker-compose, ctop, spire-server, up, wolfictl, dagger, tkn, zot,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: ollama, datadog-agent, kyverno-policy-reporter-ui, prometheus-statsd-exporter, nats, kube-logging-operator, protoc-gen-go-grpc, local-path-provisioner, kubernetes, flux-image-reflector-controller, grype, cluster-proportional-autoscaler,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: bom, datadog-agent, mage, prometheus-statsd-exporter, nats, fq, kube-logging-operator, local-path-provisioner, protoc-gen-go-grpc, kubernetes, flux-image-reflector-controller, grype, cluster-proportional-autoscaler, kubernetes-csi-external-attacher, regclient, yam,...

CVE-2024-27304 vulnerabilities

Vulnerabilities for packages: step-ca, src, kube-bench, kine, trillian, k3s, ferretdb, spicedb, telegraf, kots, vault, amass, keda, argo-workflows, caddy,...

GHSA-MRWW-27VC-GGHV vulnerabilities

Vulnerabilities for packages: step-ca, src, kube-bench, kine, trillian, k3s, ferretdb, spicedb, telegraf, kots, vault, amass, keda, argo-workflows, caddy,...

GHSA-232P-VWFF-86MP vulnerabilities

Vulnerabilities for packages: ctop, bom, melange, up, ko, apko,...

GHSA-X32M-MVFJ-52XV vulnerabilities

Vulnerabilities for packages:...

GHSA-9766-5277-J5HR vulnerabilities

Vulnerabilities for packages:...

CVE-2023-3955 vulnerabilities

Vulnerabilities for packages: argo-cd, aws-efs-csi-driver, cluster-autoscaler,...

CVE-2023-46402 vulnerabilities

Vulnerabilities for packages: melange, flux-notification-controller, argo-cd, argo-workflows,...

CVE-2023-38470 vulnerabilities

Vulnerabilities for packages:...

GHSA-5QM6-J92F-79JP vulnerabilities

Vulnerabilities for packages:...

GHSA-797F-63WG-8CHV vulnerabilities

Vulnerabilities for packages: aws-cli-v2,...

GHSA-JM46-725R-HH9V vulnerabilities

Vulnerabilities for packages: aws-cli-v2,...

CVE-2024-3177 vulnerabilities

Vulnerabilities for packages: aws-ebs-csi-driver, node-feature-discovery, ip-masq-agent, spark-operator, cluster-autoscaler, nodetaint, calico, kubernetes-csi-driver-hostpath, local-static-provisioner, kubernetes-dns-node-cache,...

CVE-2024-26130 vulnerabilities

Vulnerabilities for packages: ggshield, py3-cassandra-medusa, py3-cryptography, az,...

CVE-2022-3736 vulnerabilities

Vulnerabilities for packages:...

GHSA-5V6F-5GPQ-2628 vulnerabilities

Vulnerabilities for packages:...

CVE-2023-4408 vulnerabilities

Vulnerabilities for packages:...

CVE-2023-5679 vulnerabilities

Vulnerabilities for packages:...

GHSA-V5QP-MX94-J49V vulnerabilities

Vulnerabilities for packages:...

CVE-2023-5680 vulnerabilities

Vulnerabilities for packages:...

GHSA-M868-F948-VVJC vulnerabilities

Vulnerabilities for packages:...

GHSA-7P63-JGG6-RGPV vulnerabilities

Vulnerabilities for packages:...

GHSA-X84C-P2G9-RQV9 vulnerabilities

Vulnerabilities for packages: docker-compose, cri-tools, melange, neuvector-scanner, harbor-scanner-trivy, dagger, kaniko, k3d, prometheus, policy-controller, syft, wolfictl, docker, grype, helm-push, tekton-pipelines,...

CVE-2024-3154 vulnerabilities

Vulnerabilities for packages: wolfictl,...

GHSA-C5PJ-MQFH-RVC3 vulnerabilities

Vulnerabilities for packages: wolfictl,...

CVE-2024-23652 vulnerabilities

Vulnerabilities for packages: guac, datadog-agent, kaniko, scorecard, conftest, kubescape, docker, zot, buildkitd, skaffold,...

CVE-2024-21626 vulnerabilities

Vulnerabilities for packages: runc, datadog-agent, k3s, ingress-nginx-controller, syft, kubernetes, grype, zarf, cadvisor, kaniko, newrelic-infrastructure-agent, k9s, kubescape, kots, telegraf, nvidia-device-plugin, buildkitd, nerdctl, trivy, ctop, k3d, wolfictl, docker, zot, skopeo,...

CVE-2023-31130 vulnerabilities

Vulnerabilities for packages:...

CVE-2023-2727 vulnerabilities

Vulnerabilities for packages:...

GHSA-CFGP-2977-2FMM vulnerabilities

Vulnerabilities for packages: calico,...

GHSA-VR64-R9QJ-H27F vulnerabilities

Vulnerabilities for packages:...

CVE-2024-29131 vulnerabilities

Vulnerabilities for packages: trino, neo4j,...

GHSA-7WW5-4WQC-M92C vulnerabilities

Vulnerabilities for packages: neuvector-agent, grype, melange, eksctl, kaniko, newrelic-infrastructure-agent, fuse-overlayfs-snapshotter, kubescape, kots, telegraf, helm-push, gitness, trivy, ctop, k3d, up, cert-manager, flux-source-controller, cilium-cli, helm, kubevela, flux-helm-controller,...

CVE-2024-25620 vulnerabilities

Vulnerabilities for packages: flux-source-controller, helm-operator, eksctl, istio-operator, up, k9s, zarf, k8sgpt, chartmuseum, cilium-cli, kots, kubescape, flux-helm-controller, helm-push, zot, cert-manager,...

GHSA-R53H-JV2G-VPX6 vulnerabilities

Vulnerabilities for packages: flux-source-controller, helm-operator, eksctl, istio-operator, up, k9s, zarf, k8sgpt, chartmuseum, cilium-cli, kots, kubescape, flux-helm-controller, helm-push, zot, cert-manager,...

CVE-2024-4368 vulnerabilities

Vulnerabilities for packages:...

GHSA-JX24-3G7H-4QJ2 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-35242 vulnerabilities

Vulnerabilities for packages:...

GHSA-CF7P-GM2M-833M vulnerabilities

Vulnerabilities for packages:...

CVE-2021-36213 vulnerabilities

Vulnerabilities for packages: k3d,...

CVE-2021-38698 vulnerabilities

Vulnerabilities for packages: k3d,...

GHSA-6HW5-6GCX-PHMW vulnerabilities

Vulnerabilities for packages: k3d,...

GHSA-Q6H7-4QGW-2J9P vulnerabilities

Vulnerabilities for packages: k3d,...