PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS
PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5
CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...
7.8AI Score
0.72EPSS
CVE-2022-3064 affecting package application-gateway-kubernetes-ingress 1.4.0-19
CVE-2022-3064 affecting package application-gateway-kubernetes-ingress 1.4.0-19. This CVE either no longer is or was never...
7.8AI Score
0.004EPSS
CVE-2021-4235 affecting package application-gateway-kubernetes-ingress 1.4.0-19
CVE-2021-4235 affecting package application-gateway-kubernetes-ingress 1.4.0-19. This CVE either no longer is or was never...
6.6AI Score
0.001EPSS
CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5
CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...
8.3AI Score
0.002EPSS
GHSA-95PR-FXF5-86GV vulnerabilities
Vulnerabilities for packages: falcoctl, melange, tkn, skaffold, flux-source-controller, tekton-chains, zarf, gitsign, aactl, spire-server, goreleaser, kubescape, zot, policy-controller, wolfictl, neuvector-sigstore-interface, ko, apko, slsa-verifier, vexctl,...
7.5AI Score
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: helm, gomplate, pulumi-language-yaml, kyverno, kind, keda, cluster-autoscaler, fuse-overlayfs-snapshotter, aws-efs-csi-driver, secrets-store-csi-driver, oauth2-proxy, node-problem-detector, traefik, kubewatch, minio, kubevela, kots, conftest, kubescape,...
8.7AI Score
0.72EPSS
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: kyverno, cilium-envoy, fulcio, tkn, flux-source-controller, cosign, tekton-chains, keda, argo-workflows, istio-pilot-discovery, dex, oauth2-proxy, traefik, gitsign, aactl, external-secrets-operator, spire-server, kots, cert-manager, kubescape, sops, terragrunt,...
7.5AI Score
GHSA-JQ35-85CJ-FJ4P vulnerabilities
Vulnerabilities for packages: bom, skaffold, up, tekton-chains, aactl, goreleaser, k3d, cert-manager, ctop, chartmuseum, kubescape, paranoia, tekton-pipelines, scorecard, k3s, slsa-verifier, prometheus, loki, kpt,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, flannel, bank-vaults, etcd, kyverno, tflint, kubernetes-csi-driver-hostpath, nuclei, caddy, keda, cluster-autoscaler, nfs-subdir-external-provisioner, nerdctl, rabbitmq-cluster-operator, zarf,...
7.5AI Score
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...
6.5AI Score
0.0004EPSS
CVE-2023-46402 vulnerabilities
Vulnerabilities for packages: pulumi-kubernetes-operator, flux-notification-controller, melange, argo-cd,...
7.7AI Score
0.0005EPSS
Vulnerabilities for packages: kubernetes-dns-node-cache, local-static-provisioner, kubernetes, aws-ebs-csi-driver, ip-masq-agent, spark-operator, kubernetes-csi-driver-hostpath, nodetaint, calico, cluster-autoscaler,...
3.8AI Score
0.0004EPSS
GHSA-X84C-P2G9-RQV9 vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy, neuvector-scanner, policy-controller, tekton-pipelines, k3d, helm-push, wolfictl, melange, cri-tools, grype, syft, prometheus, buf, kaniko, docker-compose, dagger,...
7.5AI Score
CVE-2024-21626 vulnerabilities
Vulnerabilities for packages: buildkitd, skaffold, runc, nerdctl, zarf, datadog-agent, grype, cadvisor, trivy, kaniko, k3d, kots, kubernetes, ctop, kubescape, nvidia-device-plugin, skopeo, zot, newrelic-infrastructure-agent, docker, wolfictl, k9s, k3s, telegraf, syft,...
7.5AI Score
0.051EPSS
GHSA-7WW5-4WQC-M92C vulnerabilities
Vulnerabilities for packages: helm, gitness, melange, skaffold, up, flux-source-controller, flux-helm-controller, fuse-overlayfs-snapshotter, eksctl, cilium-cli, grype, trivy, kaniko, kubevela, k3d, kots, cert-manager, ctop, kubescape, zot, newrelic-infrastructure-agent, tekton-pipelines,...
7.5AI Score
CVE-2024-25620 vulnerabilities
Vulnerabilities for packages: flux-helm-controller, zarf, k9s, eksctl, cert-manager, helm-push, kots, kubescape, chartmuseum, cilium-cli, zot, istio-operator, helm-operator, up, trivy, flux-source-controller,...
6.5AI Score
0.0004EPSS
GHSA-R53H-JV2G-VPX6 vulnerabilities
Vulnerabilities for packages: flux-helm-controller, zarf, k9s, eksctl, cert-manager, helm-push, kots, kubescape, chartmuseum, cilium-cli, zot, istio-operator, helm-operator, up, trivy, flux-source-controller,...
7.5AI Score
Vulnerabilities for packages: kubernetes-dns-node-cache, cloudflared,...
5.5AI Score
0.0004EPSS
CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5
CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...
8.2AI Score
0.72EPSS
7.5AI Score
GHSA-M9W6-WP3H-VQ8G vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, cloudflared,...
7.5AI Score
GHSA-H75V-3VVJ-5MFJ vulnerabilities
Vulnerabilities for packages: kubeflow-jupyter-web-app, confluent-docker-utils, reflex, dask-gateway, pytorch, kubeflow-volumes-web-app,...
7.5AI Score
7.8AI Score
0.0004EPSS
7.5AI Score
9AI Score
0.001EPSS
7.5AI Score
7.5AI Score
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: helm, flannel, harbor, neuvector-scanner, flyte, aws-efs-csi-driver, kargo, go-md2man, node-problem-detector, kubewatch, cass-operator, harbor-registry, nri-redis, chartmuseum, nri-memcached, spqr, hubble-ui, ferretdb, prometheus-mongodb-exporter, oras, rekor,...
7AI Score
0.0004EPSS
CVE-2024-24787 vulnerabilities
Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, flannel, bank-vaults, etcd, kyverno, harbor, crane, kubernetes-csi-driver-hostpath, kind, pombump, caddy, kubebuilder, nfs-subdir-external-provisioner, multus-cni, neuvector-scanner, fuse-overlayfs-snapshotter,...
6.5AI Score
0.0004EPSS
GHSA-5FQ7-4MXC-535H vulnerabilities
Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, flannel, bank-vaults, etcd, kyverno, harbor, crane, kubernetes-csi-driver-hostpath, kind, pombump, caddy, kubebuilder, nfs-subdir-external-provisioner, multus-cni, neuvector-scanner, fuse-overlayfs-snapshotter,...
7.5AI Score
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: docker-credential-ecr-login, render-template, dgraph, gitlab-logger, cilium-envoy, prometheus-stackdriver-exporter, amass, smarter-device-manager, kind, gops, nats, cni-plugins, vertical-pod-autoscaler, go-licenses, metrics-server, go-md2man, ip-masq-agent,...
8.2AI Score
0.001EPSS
Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, bank-vaults, kyverno, nfs-subdir-external-provisioner, keda, cluster-autoscaler, fuse-overlayfs-snapshotter, vertical-pod-autoscaler, aws-efs-csi-driver, secrets-store-csi-driver, oauth2-proxy,...
6.5AI Score
0.001EPSS
CVE-2023-48795 vulnerabilities
Vulnerabilities for packages: helm, gomplate, cloud-sql-proxy, bank-vaults, kyverno, caddy, nfs-subdir-external-provisioner, cluster-autoscaler, nerdctl, nri-mssql, secrets-store-csi-driver, oauth2-proxy, crossplane, node-problem-detector, traefik, kubewatch, flux-image-reflector-controller, kots,....
7AI Score
0.962EPSS
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: helm, buildkitd, falcoctl, kyverno, bom, crane, skaffold, up, cosign, filebeat, docker-credential-gcr, tekton-chains, argo-workflows, nerdctl, flux-helm-controller, zarf, istio-pilot-discovery, eksctl, kargo, datadog-agent, traefik, helm-operator, cadvisor, gitsign,...
7.8AI Score
0.001EPSS
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, flannel, bank-vaults, etcd, kyverno, tflint, kubernetes-csi-driver-hostpath, nuclei, caddy, keda, cluster-autoscaler, nfs-subdir-external-provisioner, nerdctl, rabbitmq-cluster-operator, zarf,...
6.7AI Score
0.0004EPSS
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...
6.5AI Score
0.0004EPSS
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...
7.5AI Score
GHSA-3F2Q-6294-FMQ5 vulnerabilities
Vulnerabilities for packages: pulumi-kubernetes-operator, flux-notification-controller, melange, argo-cd,...
7.5AI Score
GHSA-JJG7-2V4V-X38H vulnerabilities
Vulnerabilities for packages: kubeflow-jupyter-web-app, confluent-docker-utils, jwt-tool, k8s-sidecar, dask-gateway, kubeflow-katib, kubeflow-pipelines-visualization-server, py3-cassandra-medusa, datadog-agent, py3.10-tensorflow-core, kubeflow-pipelines, py3-idna, kubeflow-volumes-web-app, az,...
7.5AI Score
Vulnerabilities for packages: kubeflow-jupyter-web-app, confluent-docker-utils, jwt-tool, k8s-sidecar, dask-gateway, kubeflow-katib, kubeflow-pipelines-visualization-server, py3-cassandra-medusa, datadog-agent, py3.10-tensorflow-core, kubeflow-pipelines, py3-idna, kubeflow-volumes-web-app, az,...
6.5AI Score
CVE-2024-32473 vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy, neuvector-scanner, policy-controller, tekton-pipelines, k3d, helm-push, wolfictl, melange, cri-tools, grype, syft, prometheus, buf, kaniko, docker-compose, dagger,...
5AI Score
0.0004EPSS
CVE-2023-45142 vulnerabilities
Vulnerabilities for packages: thanos, ipfs, kubevela, cert-manager, k3s, kubernetes, prometheus-adapter, gatekeeper, prometheus, up, gitlab-kas, calico, caddy,...
7.7AI Score
0.001EPSS
GHSA-RCJV-MGP8-QVMR vulnerabilities
Vulnerabilities for packages: thanos, ipfs, kubevela, cert-manager, k3s, kubernetes, prometheus-adapter, gatekeeper, prometheus, up, gitlab-kas, calico, caddy,...
7.5AI Score
GHSA-88JX-383Q-W4QC vulnerabilities
Vulnerabilities for packages: falcoctl, melange, tkn, skaffold, flux-source-controller, tekton-chains, zarf, gitsign, aactl, spire-server, goreleaser, kubescape, zot, policy-controller, wolfictl, neuvector-sigstore-interface, ko, apko, slsa-verifier, vexctl,...
7.5AI Score
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: helm, flannel, harbor, neuvector-scanner, flyte, aws-efs-csi-driver, kargo, go-md2man, node-problem-detector, kubewatch, cass-operator, harbor-registry, nri-redis, chartmuseum, nri-memcached, spqr, hubble-ui, ferretdb, prometheus-mongodb-exporter, oras, rekor,...
7.5AI Score
GHSA-2JWV-JMQ4-4J3R vulnerabilities
Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, flannel, bank-vaults, etcd, kyverno, harbor, crane, kubernetes-csi-driver-hostpath, kind, pombump, caddy, kubebuilder, nfs-subdir-external-provisioner, multus-cni, neuvector-scanner, fuse-overlayfs-snapshotter,...
7.5AI Score
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, bank-vaults, kyverno, kind, caddy, keda, cluster-autoscaler, nfs-subdir-external-provisioner, fuse-overlayfs-snapshotter, vertical-pod-autoscaler, aws-efs-csi-driver, secrets-store-csi-driver, oauth2-proxy,.....
8.2AI Score
0.002EPSS
CVE-2023-46737 vulnerabilities
Vulnerabilities for packages: goreleaser, policy-controller, falco, kubescape, ko, apko, slsa-verifier, melange, tkn, skaffold, aactl, cosign, tekton-chains,...
5.4AI Score
0.0005EPSS