PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS
PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be...
7.2AI Score
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: flux-source-controller, sops, terragrunt, oauth2-proxy, dex, fulcio, kyverno, cert-manager, cilium-envoy, falco, tekton-chains, traefik, vault, vexctl, cloudflared, istio-pilot-discovery, aactl, kubescape, argo-workflows, tekton-pipelines, slsa-verifier,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, policy-controller, supercronic, tekton-chains, stakater-reloader, hugo-extended, hubble, prometheus-alertmanager, vault, gitness, temporal,...
7.5AI Score
GHSA-X84C-P2G9-RQV9 vulnerabilities
Vulnerabilities for packages: dagger, docker-compose, kaniko, prometheus, melange, harbor-scanner-trivy, syft, policy-controller, cri-tools, grype, docker, helm-push, k3d, wolfictl, buf, tekton-pipelines,...
7.5AI Score
CVE-2024-25620 vulnerabilities
Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...
6.5AI Score
0.0004EPSS
CVE-2024-21626 vulnerabilities
Vulnerabilities for packages: telegraf, zot, grype, ingress-nginx-controller, kubescape, k9s, kaniko, cadvisor, nerdctl, zarf, syft, newrelic-infrastructure-agent, skopeo, docker, k3d, kots, buildkitd, runc, trivy, k3s, ctop, datadog-agent, kubernetes, nvidia-device-plugin, wolfictl,...
7.5AI Score
0.051EPSS
GHSA-7WW5-4WQC-M92C vulnerabilities
Vulnerabilities for packages: flux-source-controller, telegraf, eksctl, melange, zot, cert-manager, gitness, flux-helm-controller, grype, kubescape, helm-push, kaniko, tekton-pipelines, up, kubevela, newrelic-infrastructure-agent, cilium-cli, k3d, kots, trivy, ctop, fuse-overlayfs-snapshotter,...
7.5AI Score
GHSA-R53H-JV2G-VPX6 vulnerabilities
Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...
7.5AI Score
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, stakater-reloader, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, dotnet, secrets-store-csi-driver-provider-gcp, gobuster, prometheus-bind-exporter,...
8.7AI Score
0.72EPSS
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
Vulnerabilities for packages: local-static-provisioner, kubernetes-csi-driver-hostpath, kubernetes, node-feature-discovery, ip-masq-agent, cluster-autoscaler, nodetaint, spark-operator, aws-ebs-csi-driver, kubernetes-dns-node-cache,...
3.8AI Score
0.0004EPSS
GHSA-95PR-FXF5-86GV vulnerabilities
Vulnerabilities for packages: flux-source-controller, melange, neuvector-sigstore-interface, zot, falco, policy-controller, tekton-chains, vexctl, apko, aactl, kubescape, slsa-verifier, tkn, zarf, goreleaser, spire-server, gitsign, ko, wolfictl, falcoctl,...
7.5AI Score
CVE-2023-46402 vulnerabilities
Vulnerabilities for packages: argo-cd, melange, pulumi-kubernetes-operator, flux-notification-controller,...
7.7AI Score
0.0005EPSS
7.5AI Score
CVE-2024-24787 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
6.5AI Score
0.0004EPSS
GHSA-5FQ7-4MXC-535H vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
7.5AI Score
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
8.2AI Score
0.001EPSS
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: gitlab-runner, eksctl, kargo, telegraf, helm-operator, kyverno, guac, cert-manager, falco, policy-controller, tekton-chains, traefik, zot, vexctl, crane, bom, flux-helm-controller, timoni, istio-pilot-discovery, aactl, cri-tools, kubescape, k9s, docker-credential-gcr,....
7.8AI Score
0.001EPSS
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, policy-controller, supercronic, tekton-chains, stakater-reloader, hugo-extended, hubble, prometheus-alertmanager, vault, gitness, temporal,...
6.7AI Score
0.0004EPSS
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
GHSA-3F2Q-6294-FMQ5 vulnerabilities
Vulnerabilities for packages: argo-cd, melange, pulumi-kubernetes-operator, flux-notification-controller,...
7.5AI Score
GHSA-JJG7-2V4V-X38H vulnerabilities
Vulnerabilities for packages: kubeflow-jupyter-web-app, kubeflow-pipelines-visualization-server, kubeflow-katib, ggshield, kubeflow-volumes-web-app, py3-idna, confluent-docker-utils, datadog-agent, k8s-sidecar, kubeflow-pipelines, py3.10-tensorflow-core, dask-gateway, py3-cassandra-medusa, az,...
7.5AI Score
Vulnerabilities for packages: kubeflow-jupyter-web-app, kubeflow-pipelines-visualization-server, kubeflow-katib, ggshield, kubeflow-volumes-web-app, py3-idna, confluent-docker-utils, datadog-agent, k8s-sidecar, kubeflow-pipelines, py3.10-tensorflow-core, dask-gateway, py3-cassandra-medusa, az,...
6.5AI Score
CVE-2024-32473 vulnerabilities
Vulnerabilities for packages: dagger, docker-compose, kaniko, prometheus, melange, harbor-scanner-trivy, syft, policy-controller, cri-tools, grype, docker, helm-push, k3d, wolfictl, buf, tekton-pipelines,...
5AI Score
0.0004EPSS
GHSA-H75V-3VVJ-5MFJ vulnerabilities
Vulnerabilities for packages: pytorch, kubeflow-jupyter-web-app, superset, kubeflow-volumes-web-app, confluent-docker-utils, reflex,...
7.5AI Score
7.8AI Score
0.0004EPSS
7.5AI Score
9AI Score
0.001EPSS
7.5AI Score
7.5AI Score
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: vt-cli, sigstore-scaffolding, gitlab-runner, harbor-cli, opentofu, tekton-chains, harbor-scanner-trivy, spqr, render-template, kube-rbac-proxy, aactl, kubeflow-pipelines, nri-mysql, s5cmd, mkcert, wireguard-go, nuclei, kyverno-policy-reporter, minio,...
7AI Score
0.0004EPSS
CVE-2023-48795 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, opentofu, tekton-chains, mongo-tools, prometheus-alertmanager, vault, gitness, temporal, boring-registry, step, kube-rbac-proxy, aactl, kubeflow-pipelines, cluster-autoscaler, gobuster,...
7AI Score
0.962EPSS
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...
6.5AI Score
0.001EPSS
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
Vulnerabilities for packages: aws-efs-csi-driver, ip-masq-agent, cluster-autoscaler, nodetaint, prometheus-adapter, spark-operator, aws-ebs-csi-driver, kubernetes-dns-node-cache,...
8.9AI Score
0.001EPSS
GHSA-HQ6Q-C2X6-HMCH vulnerabilities
Vulnerabilities for packages: aws-efs-csi-driver, ip-masq-agent, cluster-autoscaler, nodetaint, prometheus-adapter, spark-operator, aws-ebs-csi-driver, kubernetes-dns-node-cache,...
7.5AI Score
CVE-2024-26147 vulnerabilities
Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...
7.7AI Score
0.0004EPSS
CVE-2024-34064 vulnerabilities
Vulnerabilities for packages: pytorch, kubeflow-jupyter-web-app, superset, kubeflow-volumes-web-app, confluent-docker-utils, reflex,...
5.6AI Score
0.0004EPSS
GHSA-88JX-383Q-W4QC vulnerabilities
Vulnerabilities for packages: flux-source-controller, melange, neuvector-sigstore-interface, zot, falco, policy-controller, tekton-chains, vexctl, apko, aactl, kubescape, slsa-verifier, tkn, zarf, goreleaser, spire-server, gitsign, ko, wolfictl, falcoctl,...
7.5AI Score
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: vt-cli, sigstore-scaffolding, gitlab-runner, harbor-cli, opentofu, tekton-chains, harbor-scanner-trivy, spqr, render-template, kube-rbac-proxy, aactl, kubeflow-pipelines, nri-mysql, s5cmd, mkcert, wireguard-go, nuclei, kyverno-policy-reporter, minio,...
7.5AI Score
GHSA-2JWV-JMQ4-4J3R vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
7.5AI Score
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, tekton-chains, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...
8.2AI Score
0.002EPSS
CVE-2023-46737 vulnerabilities
Vulnerabilities for packages: apko, tkn, ko, melange, cosign, goreleaser, falco, aactl, policy-controller, spire-server, tekton-chains, kubescape, slsa-verifier,...
5.4AI Score
0.0005EPSS
GHSA-9763-4F94-GFCH vulnerabilities
Vulnerabilities for packages: flux-source-controller, sops, crossplane, flux, terragrunt, actions-runner-controller, melange, zot, falco, policy-controller, pulumi-language-java, tekton-chains, vault, vexctl, gitness, apko, pulumi-language-yaml, boring-registry, pulumi-language-dotnet, aactl,...
7.5AI Score
GHSA-C5Q2-7R4C-MV6G vulnerabilities
Vulnerabilities for packages: flux-source-controller, sigstore-scaffolding, kargo, terragrunt, oauth2-proxy, melange, dex, fulcio, kyverno, guac, cert-manager, falco, policy-controller, rabbitmq-messaging-topology-operator, tekton-chains, vault, vexctl, apko, grpc-health-probe, rook, step,...
7.5AI Score
GHSA-VFP6-JRW2-99G9 vulnerabilities
Vulnerabilities for packages: apko, tkn, ko, melange, cosign, goreleaser, falco, aactl, policy-controller, spire-server, tekton-chains, kubescape, slsa-verifier,...
7.5AI Score
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score