7.5AI Score
7.5AI Score
CVE-2024-29903 vulnerabilities
Vulnerabilities for packages: goreleaser, kubescape, zarf, falco, tkn, zot, apko, aactl, policy-controller, gitsign, vexctl, wolfictl, neuvector-sigstore-interface, melange, falcoctl, ko, spire-server, tekton-chains, skaffold, slsa-verifier,...
4.2CVSS
4.6AI Score
0.0004EPSS
GHSA-32CH-6X54-Q4H9 vulnerabilities
Vulnerabilities for packages: docker-credential-acr-env, aws-efs-csi-driver, pulumi-language-java, amass, kube-state-metrics, mage, nri-nagios, goreleaser, dgraph, node-problem-detector, terraform, clusterctl, nri-mssql, crossplane, bom, k8sgpt-operator, docker-cli, mockery,...
7.5AI Score
7.5CVSS
7.8AI Score
0.001EPSS
8.1CVSS
7.2AI Score
0.001EPSS
7.5CVSS
7.7AI Score
0.001EPSS
7.5CVSS
7.7AI Score
0.001EPSS
3.8CVSS
4.8AI Score
0.0004EPSS
5.5CVSS
6.3AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
9.8CVSS
7.1AI Score
0.002EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
CVE-2024-24788 vulnerabilities
Vulnerabilities for packages: docker-credential-acr-env, aws-efs-csi-driver, kube-state-metrics, cert-manager-webhook-pdns, gitleaks, mage, wave, dgraph, clusterctl, tempo, crossplane, bom, newrelic-prometheus-configurator, mockery, newrelic-infra-operator, q, go, prometheus-bind-exporter, zot,...
6.5AI Score
0.0004EPSS
GHSA-236W-P7WF-5PH8 vulnerabilities
Vulnerabilities for packages: nri-postgresql, velero-plugin-for-csi, terragrunt, nsc, nri-mssql, q, opentofu, memcached-exporter, pluto, haproxy-ingress, ingress-nginx-controller, cluster-autoscaler, gomplate, kyverno, flux-image-automation-controller, kubernetes-csi-external-resizer, lazygit,...
7.5AI Score
CVE-2023-45290 vulnerabilities
Vulnerabilities for packages: docker-credential-acr-env, aws-efs-csi-driver, pulumi-language-java, amass, kube-state-metrics, mage, nri-nagios, goreleaser, dgraph, node-problem-detector, terraform, clusterctl, nri-mssql, crossplane, bom, k8sgpt-operator, docker-cli, mockery,...
6AI Score
0.0004EPSS
GHSA-PVCR-V8J8-J5Q3 vulnerabilities
Vulnerabilities for packages: spire-server, external-secrets-operator, boring-registry, tekton-chains, kyverno, istio-operator, vexctl, minio, kubescape, mc, falcoctl, falco, istio-pilot-agent, istio-cni, gitsign,...
7.5AI Score
CVE-2024-21664 vulnerabilities
Vulnerabilities for packages: spire-server, external-secrets-operator, boring-registry, tekton-chains, kyverno, istio-operator, vexctl, minio, kubescape, mc, falcoctl, falco, istio-pilot-agent, istio-cni, gitsign,...
7.5CVSS
6.1AI Score
0.001EPSS
4.9CVSS
6AI Score
0.0004EPSS
4.9CVSS
6AI Score
0.0004EPSS
4.9CVSS
6AI Score
0.0004EPSS
7.5AI Score
7.8CVSS
7.1AI Score
0.0004EPSS
GHSA-MR45-RX8Q-WCM9 vulnerabilities
Vulnerabilities for packages: telegraf, minio, k3s, nats,...
7.5AI Score
7.5CVSS
7.7AI Score
0.0004EPSS
GHSA-3RQ5-2G8H-59HC vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server,...
7.5AI Score
GHSA-44WM-F244-XHP3 vulnerabilities
Vulnerabilities for packages: pytorch, kubeflow-pipelines-visualization-server,...
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.8CVSS
7.1AI Score
0.0004EPSS
7.5AI Score
7.8CVSS
7.1AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
Factorio before 1.1.101 allows a crafted server to execute arbitrary code on clients via a custom map that leverages the ability of certain Lua base module functions to execute bytecode and generate fake...
EPSS
Factorio before 1.1.101 allows a crafted server to execute arbitrary code on clients via a custom map that leverages the ability of certain Lua base module functions to execute bytecode and generate fake...
7.5AI Score
EPSS
Google to Block Entrust Certificates in Chrome Starting November 2024
Google has announced that it's going to start blocking websites that use certificates from Entrust starting around November 1, 2024, in its Chrome browser, citing compliance failures and the certificate authority's inability to address security issues in a timely manner. "Over the past several...
7.1AI Score
Virtuozzo Hybrid Infrastructure 6.2 (6.2.0-136)
In this release, Virtuozzo Hybrid Infrastructure provides a range of new features that cover the compute service, high availability of the management node, object storage management, networking, and monitoring. Additionally, this release delivers stability improvements and addresses issues found...
7.2AI Score
Factorio before 1.1.101 allows a crafted server to execute arbitrary code on clients via a custom map that leverages the ability of certain Lua base module functions to execute bytecode and generate fake...
EPSS
9.8CVSS
9.6AI Score
0.038EPSS
Summary A cross-site request forgery vulnerability in IBM InfoSphere Information Server was addressed. Vulnerability Details ** CVEID: CVE-2024-31902 DESCRIPTION: **IBM InfoSphere Information Server is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and.....
6.4AI Score
EPSS
Summary A vulnerability in Oracle MySQL Connectors used by InfoSphere Information Server was addressed. Vulnerability Details ** CVEID: CVE-2023-22102 DESCRIPTION: **An unspecified vulnerability in Oracle MySQL Connectors related to the Connector/J component could allow a remote attacker to cause.....
8.3CVSS
5.8AI Score
0.001EPSS