Azure Automation State Configuration, DSC Extension Security Vulnerabilities

GHSA-69CH-W2M2-3VJP vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, k3d, hey, kube-state-metrics, grpcurl, dynamic-localpv-provisioner-fips, seldon-core-operator, py3-seldon-core, vt-cli, gitleaks,...

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, k3d, hey, restic, wireguard-go, kube-state-metrics, grpcurl, falco, go, kyverno, gke-gcloud-auth-plugin, dynamic-localpv-provisioner-fips, seldon-core-operator, py3-seldon-core,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: volume-modifier-for-k8s-fips, hello-world-golang, vertical-pod-autoscaler-fips, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, rabbitmq-default-user-credential-updater, kubernetes-csi-livenessprobe, bank-vaults, dask-gateway,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: karpenter, ollama, flux-helm-controller, minio, kubernetes-csi-livenessprobe-fips, volume-modifier-for-k8s-fips, sigstore-scaffolding, caddy, flux-kustomize-controller-0.37, slsa-verifier, prometheus-postgres-exporter-fips, influxd, kiam, grpcurl,...

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, k3d, hey, restic, wireguard-go, kube-state-metrics, grpcurl, falco, go, kyverno, gke-gcloud-auth-plugin, dynamic-localpv-provisioner-fips, seldon-core-operator, py3-seldon-core,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-cni-fips, istio-pilot-agent-fips, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, bank-vaults, cilium-fips,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: karpenter, ollama, flux-helm-controller, minio, kubernetes-csi-livenessprobe-fips, volume-modifier-for-k8s-fips, sigstore-scaffolding, flux-kustomize-controller-0.37, slsa-verifier, influxd, kiam, grpcurl, up, kubernetes-csi-livenessprobe, prometheus-adapter-fips,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

GHSA-R48Q-9G5R-8Q2H vulnerabilities

Vulnerabilities for packages: py3-seldon-core, kube-state-metrics,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-cni-fips, istio-pilot-agent-fips, vertical-pod-autoscaler-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe,....

CVE-2022-27664 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, k3d, hey, wireguard-go, kube-state-metrics, grpcurl, dynamic-localpv-provisioner-fips, seldon-core-operator, py3-seldon-core,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-cni-fips, istio-pilot-agent-fips, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, bank-vaults, cilium-fips,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-cni-fips, istio-pilot-agent-fips, vertical-pod-autoscaler-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe,....

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

GHSA-7RG2-CXVP-9P7P vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway-fips, kube-state-metrics,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: volume-modifier-for-k8s-fips, hello-world-golang, vertical-pod-autoscaler-fips, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, rabbitmq-default-user-credential-updater, kubernetes-csi-livenessprobe, bank-vaults, dask-gateway,...

CVE-2022-28948 vulnerabilities

Vulnerabilities for packages: thanos-operator, dynamic-localpv-provisioner, kubernetes-csi-external-snapshotter, kube-state-metrics, dynamic-localpv-provisioner-fips,...

CVE-2022-32149 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, k3d, hey, kube-state-metrics, grpcurl, dynamic-localpv-provisioner-fips, seldon-core-operator, py3-seldon-core, vt-cli, gitleaks,...

CVE-2022-46146 vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway-fips, kube-state-metrics,...

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: tekton-pipelines, karpenter, ollama, cilium-cli, flux-helm-controller, loki, istio-cni-fips, istio-pilot-agent-fips, sigstore-scaffolding, spire-server-fips, caddy, flux-kustomize-controller-0.37, slsa-verifier, prometheus-postgres-exporter-fips, influxd,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: hello-world-golang, vertical-pod-autoscaler-fips, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, rabbitmq-default-user-credential-updater, kubernetes-csi-livenessprobe, bank-vaults, dask-gateway, local-static-provisioner, gosu, paranoia,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: hello-world-golang, vertical-pod-autoscaler-fips, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, rabbitmq-default-user-credential-updater, kubernetes-csi-livenessprobe, bank-vaults, dask-gateway, local-static-provisioner, gosu, paranoia,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: karpenter, ollama, flux-helm-controller, minio, kubernetes-csi-livenessprobe-fips, volume-modifier-for-k8s-fips, sigstore-scaffolding, caddy, flux-kustomize-controller-0.37, slsa-verifier, prometheus-postgres-exporter-fips, influxd, kiam, grpcurl,...

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: tekton-pipelines, karpenter, ollama, cilium-cli, flux-helm-controller, loki, istio-cni-fips, istio-pilot-agent-fips, sigstore-scaffolding, spire-server-fips, caddy, flux-kustomize-controller-0.37, slsa-verifier, prometheus-postgres-exporter-fips, influxd,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: karpenter, ollama, flux-helm-controller, minio, kubernetes-csi-livenessprobe-fips, volume-modifier-for-k8s-fips, sigstore-scaffolding, flux-kustomize-controller-0.37, prometheus-postgres-exporter-fips, influxd, kiam, grpcurl, prometheus-pushgateway,...

GHSA-HP87-P4GW-J4GQ vulnerabilities

Vulnerabilities for packages: thanos-operator, dynamic-localpv-provisioner, kubernetes-csi-external-snapshotter, kube-state-metrics, dynamic-localpv-provisioner-fips,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, minio, volume-modifier-for-k8s-fips, istio-pilot-agent-fips, hello-world-golang, prometheus-postgres-exporter-fips, secrets-store-csi-driver-provider-aws, nri-kubernetes, kubernetes-csi-livenessprobe, dask-gateway, vexctl,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: karpenter, ollama, flux-helm-controller, minio, kubernetes-csi-livenessprobe-fips, volume-modifier-for-k8s-fips, sigstore-scaffolding, flux-kustomize-controller-0.37, prometheus-postgres-exporter-fips, influxd, kiam, grpcurl, prometheus-pushgateway,...

GHSA-9763-4F94-GFCH vulnerabilities

Vulnerabilities for packages: scorecard, zot, actions-runner-controller, flux-notification-controller-2.0, kaniko, policy-controller, falco, pulumi-language-dotnet, gitsign, falcoctl-fips, flux-notification-controller, spire-server-fips, grafana, slsa-verifier, gitness, zarf, sops, apko,...

GHSA-69CG-P879-7622 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, k3d, hey, wireguard-go, kube-state-metrics, grpcurl, dynamic-localpv-provisioner-fips, seldon-core-operator, py3-seldon-core,...

CVE-2022-1996 vulnerabilities

Vulnerabilities for packages: py3-seldon-core, kube-state-metrics,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: karpenter, ollama, flux-helm-controller, minio, kubernetes-csi-livenessprobe-fips, volume-modifier-for-k8s-fips, sigstore-scaffolding, flux-kustomize-controller-0.37, slsa-verifier, influxd, kiam, grpcurl, up, kubernetes-csi-livenessprobe, prometheus-adapter-fips,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller, opentofu, flux-image-automation-controller, eksctl, pulumi-language-java, nodetaint, bank-vaults, etcd, flux-helm-controller, aws-efs-csi-driver, kots, terraform-provider-aws, src, vault-k8s, zot, rook, telegraf, terraform,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller, opentofu, flux-image-automation-controller, nri-mysql, eksctl, pulumi-language-java, wazero, nodetaint, etcd, flux-helm-controller, nri-couchbase, aws-efs-csi-driver, vault-k8s, src, kube-rbac-proxy, terraform, telegraf,...

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: opentofu, flux-image-automation-controller, eksctl, bank-vaults, flux-helm-controller, kots, terraform-provider-aws, vault-k8s, src, kube-rbac-proxy, zot, terraform, telegraf, slsa-verifier, gobuster, libssh2, nfs-subdir-external-provisioner, cloud-sql-proxy,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: eksctl, flux-helm-controller, aws-efs-csi-driver, zot, terraform, telegraf, prometheus-pushgateway, q, gobuster, step-issuer, restic, external-dns, nri-f5, kubeflow-pipelines, kubernetes-csi-external-snapshotter, capslock, timestamp-authority, gitness, nats,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: eksctl, tempo, bank-vaults, etcd, aws-efs-csi-driver, vault-k8s, src, zot, telegraf, pulumi-language-yaml, q, harbor-registry, fuse-overlayfs-snapshotter, gostatsd, nfs-subdir-external-provisioner, clusterctl, petname, gitlab-runner, kubernetes-csi-external-attacher,.....

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: eksctl, tempo, bank-vaults, etcd, aws-efs-csi-driver, vault-k8s, src, zot, telegraf, pulumi-language-yaml, q, harbor-registry, fuse-overlayfs-snapshotter, gostatsd, nfs-subdir-external-provisioner, clusterctl, petname, gitlab-runner, kubernetes-csi-external-attacher,.....

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: opentofu, flux-image-automation-controller, pulumi-language-java, nodetaint, bank-vaults, flux-helm-controller, aws-efs-csi-driver, kots, vault-k8s, src, zot, terraform, telegraf, prometheus-pushgateway, pulumi-language-yaml, gobuster, fuse-overlayfs-snapshotter,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller, opentofu, flux-image-automation-controller, eksctl, pulumi-language-java, nodetaint, bank-vaults, etcd, flux-helm-controller, aws-efs-csi-driver, kots, terraform-provider-aws, src, vault-k8s, zot, rook, telegraf, terraform,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller, opentofu, flux-image-automation-controller, nri-mysql, eksctl, pulumi-language-java, wazero, nodetaint, etcd, flux-helm-controller, nri-couchbase, aws-efs-csi-driver, vault-k8s, src, kube-rbac-proxy, terraform, telegraf,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: ingress-nginx-controller, opentofu, flux-image-automation-controller, nri-mysql, eksctl, pulumi-language-java, wazero, nodetaint, etcd, flux-helm-controller, nri-couchbase, aws-efs-csi-driver, vault-k8s, src, kube-rbac-proxy, terraform, telegraf,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: eksctl, flux-helm-controller, aws-efs-csi-driver, zot, terraform, telegraf, prometheus-pushgateway, q, gobuster, step-issuer, restic, external-dns, nri-f5, kubeflow-pipelines, kubernetes-csi-external-snapshotter, capslock, timestamp-authority, gitness, nats,...