Jenkins AbsInt A³ Plugin Security Vulnerabilities

CVE-2023-39325 affecting package golang for versions less than 1.20.7-2

CVE-2023-39325 affecting package golang for versions less than 1.20.7-2. A patched version of the package is...

CVE-2023-25675 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-25675 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is...

CVE-2023-25669 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-25669 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is...

CVE-2023-25667 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-25667 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is...

CVE-2023-24534 affecting package golang for versions less than 1.20.7-1

CVE-2023-24534 affecting package golang for versions less than 1.20.7-1. A patched version of the package is...

CVE-2022-41724 affecting package msft-golang for versions less than 1.19.6-1

CVE-2022-41724 affecting package msft-golang for versions less than 1.19.6-1. A patched version of the package is...

CVE-2023-5678 affecting package openssl for versions less than 1.1.1k-28

CVE-2023-5678 affecting package openssl for versions less than 1.1.1k-28. A patched version of the package is...

CVE-2023-24534 affecting package msft-golang for versions less than 1.20.7-1

CVE-2023-24534 affecting package msft-golang for versions less than 1.20.7-1. A patched version of the package is...

CVE-2023-24538 affecting package msft-golang for versions less than 1.20.11-1

CVE-2023-24538 affecting package msft-golang for versions less than 1.20.11-1. A patched version of the package is...

CVE-2023-45290 affecting package golang for versions less than 1.21.6-1

CVE-2023-45290 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2023-24540 affecting package golang for versions less than 1.21.6-1

CVE-2023-24540 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2024-24783 affecting package golang for versions less than 1.21.6-1

CVE-2024-24783 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2023-49292 affecting package golang for versions less than 1.21.6-1

CVE-2023-49292 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2024-23653 affecting package moby-engine for versions less than 20.10.27-3

CVE-2024-23653 affecting package moby-engine for versions less than 20.10.27-3. A patched version of the package is...

CVE-2020-27545 affecting package libdwarf for versions less than 0.9.0

CVE-2020-27545 affecting package libdwarf for versions less than 0.9.0. A patched version of the package is...

CVE-2023-29404 affecting package golang for versions less than 1.20.7-1

CVE-2023-29404 affecting package golang for versions less than 1.20.7-1. A patched version of the package is...

CVE-2023-29405 affecting package msft-golang for versions less than 1.20.7-1

CVE-2023-29405 affecting package msft-golang for versions less than 1.20.7-1. A patched version of the package is...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: sonobuoy, rekor, k3s, flux-image-automation-controller, vault-k8s, hubble, cluster-autoscaler, datadog-agent, gh, litefs, rclone, nfs-subdir-external-provisioner, temporal, jaeger-agent, vault-csi-provider, istio-operator, cloudflared, dynamic-localpv-provisioner, mc,....

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, go, falco, hey, k3d, grpcurl, wireguard-go, restic,...

CVE-2024-21626 vulnerabilities

Vulnerabilities for packages: kaniko, buildkitd, nvidia-device-plugin, cadvisor, k3d, k3s, datadog-agent, kots, kubescape, runc, grype, skopeo, ctop, syft, wolfictl, telegraf, zot, docker, zarf, ingress-nginx-controller, skaffold, k9s, kubernetes, nerdctl, trivy,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: wazero, dive, oras, cue, fq, docker-credential-ecr-login, sonobuoy, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, controller-gen, datadog-agent, direnv, gh, litefs, gitlab-logger, aws-flb-cloudwatch, nfs-subdir-external-provisioner, temporal,...

CVE-2017-12613 affecting package apr for versions less than 1.6.3-1

CVE-2017-12613 affecting package apr for versions less than 1.6.3-1. A patched version of the package is...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: cue, cluster-autoscaler, vault-csi-provider, git-lfs, dynamic-localpv-provisioner, mc, gatekeeper, hugo, flux-kustomize-controller, gobuster, kubernetes-csi-node-driver-registrar, frp, spark-operator, pulumi-kubernetes-operator, ingress-nginx-controller, goreleaser,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: wazero, dive, oras, cue, fq, docker-credential-ecr-login, sonobuoy, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, controller-gen, datadog-agent, direnv, gh, litefs, gitlab-logger, aws-flb-cloudwatch, nfs-subdir-external-provisioner, temporal,...

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, go, falco, hey, k3d, grpcurl, wireguard-go, restic,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: wazero, dive, oras, cue, fq, docker-credential-ecr-login, sonobuoy, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, controller-gen, datadog-agent, direnv, gh, litefs, gitlab-logger, aws-flb-cloudwatch, nfs-subdir-external-provisioner, temporal,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: stern, dive, nvidia-container-toolkit, grafana-rollout-operator, cue, oras, docker-credential-ecr-login, sonobuoy, rekor, overmind, vault-k8s, direnv, litefs, rclone, nfs-subdir-external-provisioner, glab, jaeger-agent, docker-credential-gcr, mkcert, istio-operator,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: stern, dive, nvidia-container-toolkit, grafana-rollout-operator, cue, oras, docker-credential-ecr-login, sonobuoy, rekor, overmind, vault-k8s, direnv, litefs, rclone, nfs-subdir-external-provisioner, glab, jaeger-agent, docker-credential-gcr, mkcert, istio-operator,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: go-bindata, ip-masq-agent, metrics-server, oras, go-licenses, influx, docker-credential-ecr-login, flannel-cni-plugin, k3d, kubernetes-dashboard-metrics-scraper, prometheus-bind-exporter, sonobuoy, cilium-envoy, sops, wait-for-port, petname, gitlab-logger, dgraph,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: apko, dive, cue, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, nfs-subdir-external-provisioner, vault-csi-provider, git-lfs, dynamic-localpv-provisioner, mc, kube-state-metrics, gatekeeper, hugo, flux-kustomize-controller, gobuster,...

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: dive, k3s, vault-k8s, datadog-agent, rclone, step-issuer, glab, jaeger-agent, istio-operator, step, gosu, nri-jmx, gpu-feature-discovery, mc, kube-state-metrics, gatekeeper, flux-kustomize-controller, kubernetes-csi-node-driver-registrar, falcosidekick,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: dive, k3s, vault-k8s, datadog-agent, rclone, step-issuer, glab, jaeger-agent, istio-operator, step, gosu, nri-jmx, mc, kube-state-metrics, gatekeeper, flux-kustomize-controller, gobuster, kubernetes-csi-node-driver-registrar, spark-operator, falcosidekick,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: sonobuoy, rekor, k3s, flux-image-automation-controller, vault-k8s, hubble, cluster-autoscaler, datadog-agent, gh, litefs, rclone, nfs-subdir-external-provisioner, temporal, jaeger-agent, vault-csi-provider, istio-operator, cloudflared, dynamic-localpv-provisioner, mc,....

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: dive, k3s, vault-k8s, datadog-agent, rclone, step-issuer, glab, jaeger-agent, istio-operator, step, gosu, nri-jmx, mc, kube-state-metrics, gatekeeper, flux-kustomize-controller, gobuster, kubernetes-csi-node-driver-registrar, spark-operator, falcosidekick,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: stern, dive, nvidia-container-toolkit, grafana-rollout-operator, cue, oras, docker-credential-ecr-login, sonobuoy, rekor, overmind, vault-k8s, direnv, litefs, rclone, nfs-subdir-external-provisioner, glab, jaeger-agent, docker-credential-gcr, mkcert, istio-operator,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: wazero, dive, oras, cue, fq, docker-credential-ecr-login, sonobuoy, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, controller-gen, datadog-agent, direnv, gh, litefs, gitlab-logger, aws-flb-cloudwatch, nfs-subdir-external-provisioner, temporal,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: wazero, dive, oras, cue, fq, docker-credential-ecr-login, sonobuoy, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, controller-gen, datadog-agent, direnv, gh, litefs, gitlab-logger, aws-flb-cloudwatch, nfs-subdir-external-provisioner, temporal,...

CVE-2018-25032 affecting package grpc for versions less than 1.35.0-4

CVE-2018-25032 affecting package grpc for versions less than 1.35.0-4. A patched version of the package is...

CVE-2024-24790 vulnerabilities

Vulnerabilities for packages: dive, k3s, vault-k8s, datadog-agent, rclone, step-issuer, glab, jaeger-agent, istio-operator, step, gosu, nri-jmx, gpu-feature-discovery, mc, kube-state-metrics, gatekeeper, flux-kustomize-controller, kubernetes-csi-node-driver-registrar, falcosidekick,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: apko, dive, cue, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, nfs-subdir-external-provisioner, vault-csi-provider, istio-operator, git-lfs, dynamic-localpv-provisioner, mc, kube-state-metrics, gatekeeper, hugo, flux-kustomize-controller,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: wazero, dive, oras, cue, fq, docker-credential-ecr-login, sonobuoy, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, controller-gen, datadog-agent, direnv, gh, litefs, gitlab-logger, aws-flb-cloudwatch, nfs-subdir-external-provisioner, temporal,...

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: dive, k3s, vault-k8s, datadog-agent, rclone, step-issuer, glab, jaeger-agent, istio-operator, step, gosu, nri-jmx, gpu-feature-discovery, mc, kube-state-metrics, gatekeeper, flux-kustomize-controller, kubernetes-csi-node-driver-registrar, falcosidekick,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: go-bindata, ip-masq-agent, metrics-server, oras, go-licenses, influx, docker-credential-ecr-login, flannel-cni-plugin, k3d, kubernetes-dashboard-metrics-scraper, prometheus-bind-exporter, sonobuoy, cilium-envoy, sops, wait-for-port, petname, gitlab-logger, dgraph,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: go-bindata, ip-masq-agent, metrics-server, oras, go-licenses, influx, docker-credential-ecr-login, flannel-cni-plugin, k3d, kubernetes-dashboard-metrics-scraper, prometheus-bind-exporter, sonobuoy, cilium-envoy, sops, wait-for-port, petname, gitlab-logger, dgraph,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: apko, dive, cue, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, nfs-subdir-external-provisioner, vault-csi-provider, git-lfs, dynamic-localpv-provisioner, mc, kube-state-metrics, gatekeeper, hugo, flux-kustomize-controller, gobuster,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: apko, dive, cue, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, nfs-subdir-external-provisioner, vault-csi-provider, istio-operator, git-lfs, dynamic-localpv-provisioner, mc, kube-state-metrics, gatekeeper, hugo, flux-kustomize-controller,...

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: dex, coredns, metrics-server, node-problem-detector, flux-helm-controller, cosign, buildkitd, pulumi-language-dotnet, kubeflow-katib, kubernetes-csi-external-attacher, k3d, nvidia-device-plugin, secrets-store-csi-driver, cilium-envoy, calico, cluster-autoscaler, kots,....

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: cue, cluster-autoscaler, vault-csi-provider, git-lfs, dynamic-localpv-provisioner, mc, gatekeeper, hugo, flux-kustomize-controller, gobuster, kubernetes-csi-node-driver-registrar, frp, spark-operator, pulumi-kubernetes-operator, ingress-nginx-controller, goreleaser,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: wazero, dive, oras, cue, fq, docker-credential-ecr-login, sonobuoy, k3s, flux-image-automation-controller, vault-k8s, cluster-autoscaler, controller-gen, datadog-agent, direnv, gh, litefs, gitlab-logger, aws-flb-cloudwatch, nfs-subdir-external-provisioner, temporal,...

CVE-2018-25032 affecting package ccache for versions less than 3.6-3

CVE-2018-25032 affecting package ccache for versions less than 3.6-3. A patched version of the package is...