CVE-2024-4148 Redos (Regular Expression Denial of Service) in lunary-ai/lunary
A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary application, version 1.2.10. An attacker can exploit this vulnerability by maliciously manipulating regular expressions, which can significantly impact the response time of the application and potentially...
7.1AI Score
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: flux-source-controller, sops, terragrunt, oauth2-proxy, dex, fulcio, kyverno, cert-manager, cilium-envoy, falco, tekton-chains, traefik, vault, vexctl, cloudflared, istio-pilot-discovery, aactl, kubescape, argo-workflows, tekton-pipelines, slsa-verifier,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, policy-controller, supercronic, tekton-chains, stakater-reloader, hugo-extended, hubble, prometheus-alertmanager, vault, gitness, temporal,...
7.5AI Score
CVE-2024-25620 vulnerabilities
Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...
6.5AI Score
0.0004EPSS
GHSA-7WW5-4WQC-M92C vulnerabilities
Vulnerabilities for packages: flux-source-controller, telegraf, eksctl, melange, zot, cert-manager, gitness, flux-helm-controller, grype, kubescape, helm-push, kaniko, tekton-pipelines, up, kubevela, newrelic-infrastructure-agent, cilium-cli, k3d, kots, trivy, ctop, fuse-overlayfs-snapshotter,...
7.5AI Score
GHSA-R53H-JV2G-VPX6 vulnerabilities
Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...
7.5AI Score
GHSA-JQ35-85CJ-FJ4P vulnerabilities
Vulnerabilities for packages: cert-manager, falco, tekton-chains, bom, aactl, kubescape, tekton-pipelines, slsa-verifier, paranoia, loki, prometheus, up, chartmuseum, goreleaser, k3d, k3s, kpt, ctop, skaffold,...
7.5AI Score
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, stakater-reloader, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, dotnet, secrets-store-csi-driver-provider-gcp, gobuster, prometheus-bind-exporter,...
8.7AI Score
0.72EPSS
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
CVE-2024-24787 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
6.5AI Score
0.0004EPSS
GHSA-5FQ7-4MXC-535H vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
7.5AI Score
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
8.2AI Score
0.001EPSS
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: gitlab-runner, eksctl, kargo, telegraf, helm-operator, kyverno, guac, cert-manager, falco, policy-controller, tekton-chains, traefik, zot, vexctl, crane, bom, flux-helm-controller, timoni, istio-pilot-discovery, aactl, cri-tools, kubescape, k9s, docker-credential-gcr,....
7.8AI Score
0.001EPSS
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, policy-controller, supercronic, tekton-chains, stakater-reloader, hugo-extended, hubble, prometheus-alertmanager, vault, gitness, temporal,...
6.7AI Score
0.0004EPSS
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
GHSA-RCJV-MGP8-QVMR vulnerabilities
Vulnerabilities for packages: thanos, prometheus, k3s, up, kubevela, gitlab-kas, kubernetes, cert-manager, caddy, keda, gatekeeper, prometheus-adapter, ipfs,...
7.5AI Score
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: vt-cli, sigstore-scaffolding, gitlab-runner, harbor-cli, opentofu, tekton-chains, harbor-scanner-trivy, spqr, render-template, kube-rbac-proxy, aactl, kubeflow-pipelines, nri-mysql, s5cmd, mkcert, wireguard-go, nuclei, kyverno-policy-reporter, minio,...
7AI Score
0.0004EPSS
CVE-2023-48795 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, opentofu, tekton-chains, mongo-tools, prometheus-alertmanager, vault, gitness, temporal, boring-registry, step, kube-rbac-proxy, aactl, kubeflow-pipelines, cluster-autoscaler, gobuster,...
7AI Score
0.962EPSS
CVE-2023-45142 vulnerabilities
Vulnerabilities for packages: thanos, prometheus, k3s, up, kubevela, gitlab-kas, kubernetes, cert-manager, caddy, keda, gatekeeper, prometheus-adapter, ipfs,...
7.7AI Score
0.001EPSS
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...
6.5AI Score
0.001EPSS
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
CVE-2023-47108 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, docker-compose, argo-cd, k3s, kubevela, temporal-server, kine, kyverno, kubernetes, cert-manager, containerd, cri-tools, keda, kubescape, envoy-ratelimit, aws-ebs-csi-driver,...
7.7AI Score
0.001EPSS
GHSA-8PGV-569H-W5RW vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, docker-compose, argo-cd, k3s, kubevela, temporal-server, kine, kyverno, kubernetes, cert-manager, containerd, cri-tools, keda, kubescape, envoy-ratelimit, aws-ebs-csi-driver,...
7.5AI Score
CVE-2024-26147 vulnerabilities
Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...
7.7AI Score
0.0004EPSS
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: vt-cli, sigstore-scaffolding, gitlab-runner, harbor-cli, opentofu, tekton-chains, harbor-scanner-trivy, spqr, render-template, kube-rbac-proxy, aactl, kubeflow-pipelines, nri-mysql, s5cmd, mkcert, wireguard-go, nuclei, kyverno-policy-reporter, minio,...
7.5AI Score
GHSA-2JWV-JMQ4-4J3R vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
7.5AI Score
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, tekton-chains, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...
8.2AI Score
0.002EPSS
GHSA-C5Q2-7R4C-MV6G vulnerabilities
Vulnerabilities for packages: flux-source-controller, sigstore-scaffolding, kargo, terragrunt, oauth2-proxy, melange, dex, fulcio, kyverno, guac, cert-manager, falco, policy-controller, rabbitmq-messaging-topology-operator, tekton-chains, vault, vexctl, apko, grpc-health-probe, rook, step,...
7.5AI Score
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
GHSA-5F94-VHJQ-RPG8 vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
7.5AI Score
GHSA-9F76-WG39-X86H vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
7.5AI Score
CVE-2024-28180 vulnerabilities
Vulnerabilities for packages: flux-source-controller, sigstore-scaffolding, kargo, terragrunt, oauth2-proxy, melange, dex, fulcio, kyverno, guac, cert-manager, falco, policy-controller, rabbitmq-messaging-topology-operator, tekton-chains, vault, vexctl, apko, grpc-health-probe, rook, step,...
5AI Score
0.0004EPSS
GHSA-2WRH-6PVC-2JM9 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...
7.5AI Score
GHSA-4374-P667-P6C8 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, tekton-chains, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...
7.5AI Score
GHSA-45X7-PX36-X8W8 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, opentofu, tekton-chains, mongo-tools, prometheus-alertmanager, vault, gitness, temporal, boring-registry, step, kube-rbac-proxy, aactl, kubeflow-pipelines, cluster-autoscaler, gobuster,...
7.5AI Score
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: flux-source-controller, metrics-server, telegraf, terraform-provider-aws, oauth2-proxy, dex, cert-manager, cilium-envoy, falco, coredns, pulumi-language-java, influxd, cortex, dynamic-localpv-provisioner, aws-efs-csi-driver, kubernetes-csi-livenessprobe,...
7.5AI Score
CVE-2024-24783 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
CVE-2024-24785 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
GHSA-32CH-6X54-Q4H9 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
GHSA-V53G-5GJP-272R vulnerabilities
Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...
7.5AI Score
CVE-2023-39326 vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
7.4AI Score
0.001EPSS
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, stakater-reloader, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, dotnet, secrets-store-csi-driver-provider-gcp, gobuster, prometheus-bind-exporter,...
7.5AI Score
GHSA-XW73-RW38-6VJC vulnerabilities
Vulnerabilities for packages: gitlab-runner, eksctl, kargo, telegraf, helm-operator, kyverno, guac, cert-manager, falco, policy-controller, tekton-chains, traefik, zot, vexctl, crane, bom, flux-helm-controller, timoni, istio-pilot-discovery, aactl, cri-tools, kubescape, k9s, docker-credential-gcr,....
7.5AI Score
CVE-2023-45290 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
CVE-2024-24788 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
6.5AI Score
0.0004EPSS
CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5
CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...
7.8AI Score
0.72EPSS
CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5
CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...
8.3AI Score
0.002EPSS
CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5
CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...
8.2AI Score
0.72EPSS