Job Manager & Career Security Vulnerabilities

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: buildkitd, amass, calico, istio-envoy, gke-gcloud-auth-plugin, gitlab-pages, gobuster, nats, nvidia-device-plugin, pulumi-language-yaml, dex, kaf, sigstore-scaffolding, frp, oauth2-proxy, kots, up, cert-manager, flux-notification-controller, helm,...

GHSA-2C7C-3MJ9-8FQH vulnerabilities

Vulnerabilities for packages: rekor, flux-source-controller, aactl, external-secrets-operator, vault, keda, tekton-chains, terragrunt, flux-kustomize-controller, istio-pilot-discovery, cosign, dex, spire-server, cilium-envoy, oauth2-proxy, sops, kots, cert-manager, tekton-pipelines, kubescape,...

GHSA-JQ35-85CJ-FJ4P vulnerabilities

Vulnerabilities for packages: skaffold, kpt, aactl, chartmuseum, k3s, ctop, tekton-chains, paranoia, scorecard, up, cert-manager, k3d, tekton-pipelines, loki, kubescape, bom, slsa-verifier, prometheus,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, calico, actions-runner-controller, capslock, newrelic-infra-operator, trivy, gitlab-pages, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml, prometheus-mongodb-exporter, flannel, goreleaser,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

GHSA-7WW5-4WQC-M92C vulnerabilities

Vulnerabilities for packages: skaffold, flux-source-controller, newrelic-infrastructure-agent, eksctl, trivy, zot, ctop, kaniko, melange, gitness, helm-push, grype, kots, up, cert-manager, k3d, tekton-pipelines, telegraf, helm, kubescape, fuse-overlayfs-snapshotter, cilium-cli, kubevela,...

CVE-2024-25620 vulnerabilities

Vulnerabilities for packages: helm-push, k9s, flux-source-controller, kots, up, cert-manager, chartmuseum, helm-operator, eksctl, istio-operator, trivy, zot, kubescape, k8sgpt, flux-helm-controller, zarf,...

GHSA-R53H-JV2G-VPX6 vulnerabilities

Vulnerabilities for packages: helm-push, k9s, flux-source-controller, kots, up, cert-manager, chartmuseum, helm-operator, eksctl, istio-operator, trivy, zot, kubescape, k8sgpt, flux-helm-controller, zarf,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: oras, gke-gcloud-auth-plugin, gitlab-pages, neuvector-scanner, kubeadm-controlplane-controller, docker-credential-ecr-login, goreleaser, gitleaks, vt-cli, wazero, nri-couchbase, dagdotdev, nri-discovery-kubernetes, oauth2-proxy, spqr, metallb, src-fingerprint,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: buildkitd, snyk-cli, local-static-provisioner, oras, capslock, crane, glab, gke-gcloud-auth-plugin, newrelic-infra-operator, tempo, gitlab-pages, trivy, nvidia-device-plugin, neuvector-scanner, pulumi-language-yaml, rootlesskit, docker-credential-ecr-login, flannel,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: buildkitd, snyk-cli, local-static-provisioner, oras, capslock, crane, glab, gke-gcloud-auth-plugin, newrelic-infra-operator, tempo, gitlab-pages, trivy, nvidia-device-plugin, neuvector-scanner, pulumi-language-yaml, rootlesskit, docker-credential-ecr-login, flannel,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: aactl, cni-plugins, amass, hey, oras, ip-masq-agent, render-template, docker-cli, gke-gcloud-auth-plugin, go-licenses, ctop, mage, gobuster, nats, gops, go-md2man, docker-credential-ecr-login, goreleaser, flannel-cni-plugin, influx, scorecard, cilium-envoy,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: buildkitd, gke-gcloud-auth-plugin, gitlab-pages, gobuster, nvidia-device-plugin, pulumi-language-yaml, prometheus-mongodb-exporter, dex, falcoctl, flux-image-automation-controller, flux, kaf, sigstore-scaffolding, frp, kubernetes-dashboard-metrics-scraper,...

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: buildkitd, libssh, amass, calico, actions-runner-controller, trivy, gitlab-pages, gobuster, nats, prometheus-mongodb-exporter, dex, falcoctl, flux-image-automation-controller, flux, kaf, sigstore-scaffolding, frp, oauth2-proxy, prometheus-nats-exporter, kots, up,...

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: buildkitd, skaffold, k9s, aactl, crane, k3s, newrelic-infrastructure-agent, eksctl, kargo, istio-pilot-agent, trivy, zot, ctop, tekton-chains, istio-pilot-discovery, nerdctl, goreleaser, cosign, falcoctl, flux-image-reflector-controller, cri-tools, scorecard, skopeo,.....

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, calico, actions-runner-controller, capslock, newrelic-infra-operator, trivy, gitlab-pages, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml, prometheus-mongodb-exporter, flannel, goreleaser,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

CVE-2023-45142 vulnerabilities

Vulnerabilities for packages: ipfs, gatekeeper, gitlab-kas, up, cert-manager, thanos, prometheus-adapter, calico, k3s, kubernetes, prometheus, kubevela, keda,...

GHSA-RCJV-MGP8-QVMR vulnerabilities

Vulnerabilities for packages: ipfs, gatekeeper, gitlab-kas, up, cert-manager, thanos, prometheus-adapter, calico, k3s, kubernetes, prometheus, kubevela, keda,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: oras, gke-gcloud-auth-plugin, gitlab-pages, neuvector-scanner, kubeadm-controlplane-controller, docker-credential-ecr-login, goreleaser, gitleaks, vt-cli, wazero, nri-couchbase, dagdotdev, nri-discovery-kubernetes, oauth2-proxy, spqr, metallb, src-fingerprint,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: buildkitd, snyk-cli, local-static-provisioner, oras, capslock, crane, glab, gke-gcloud-auth-plugin, newrelic-infra-operator, tempo, gitlab-pages, trivy, nvidia-device-plugin, neuvector-scanner, pulumi-language-yaml, rootlesskit, docker-credential-ecr-login, flannel,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: buildkitd, amass, gke-gcloud-auth-plugin, gitlab-pages, gobuster, nats, nvidia-device-plugin, pulumi-language-yaml, prometheus-mongodb-exporter, dex, falcoctl, flux-image-automation-controller, flux, kaf, sigstore-scaffolding, frp,...

GHSA-C5Q2-7R4C-MV6G vulnerabilities

Vulnerabilities for packages: rekor, skaffold, wolfictl, flux-source-controller, aactl, external-secrets-operator, apko, vault, weaviate, kargo, ko, istio-pilot-agent, zot, keda, timestamp-authority, tekton-chains, terragrunt, flux-kustomize-controller, istio-pilot-discovery, nerdctl, goreleaser,.....

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

GHSA-8PGV-569H-W5RW vulnerabilities

Vulnerabilities for packages: temporal-server, cert-manager, aws-ebs-csi-driver, kyverno, temporal, kubescape, k3s, kine, kubernetes, containerd, argo-cd, envoy-ratelimit, kubernetes-csi-external-resizer, kubevela, cri-tools, keda,...

CVE-2023-47108 vulnerabilities

Vulnerabilities for packages: temporal-server, cert-manager, aws-ebs-csi-driver, kyverno, temporal, kubescape, k3s, kine, kubernetes, containerd, argo-cd, envoy-ratelimit, kubernetes-csi-external-resizer, kubevela, cri-tools, keda,...

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2024-26147 vulnerabilities

Vulnerabilities for packages: helm-push, k9s, flux-source-controller, kots, up, cert-manager, chartmuseum, helm-operator, eksctl, istio-operator, trivy, zot, kubescape, k8sgpt, flux-helm-controller, zarf,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: aactl, cni-plugins, amass, hey, oras, ip-masq-agent, render-template, docker-cli, gke-gcloud-auth-plugin, go-licenses, ctop, mage, gobuster, nats, gops, go-md2man, docker-credential-ecr-login, goreleaser, flannel-cni-plugin, influx, scorecard, cilium-envoy,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: aactl, cni-plugins, amass, hey, oras, ip-masq-agent, render-template, docker-cli, gke-gcloud-auth-plugin, go-licenses, ctop, mage, gobuster, nats, gops, go-md2man, docker-credential-ecr-login, goreleaser, flannel-cni-plugin, influx, scorecard, cilium-envoy,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: aactl, cni-plugins, amass, hey, oras, ip-masq-agent, render-template, docker-cli, gke-gcloud-auth-plugin, go-licenses, ctop, mage, gobuster, nats, gops, go-md2man, docker-credential-ecr-login, goreleaser, flannel-cni-plugin, influx, scorecard, cilium-envoy,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: buildkitd, amass, gke-gcloud-auth-plugin, gitlab-pages, gobuster, nats, nvidia-device-plugin, pulumi-language-yaml, prometheus-mongodb-exporter, dex, falcoctl, flux-image-automation-controller, flux, kaf, sigstore-scaffolding, frp,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: buildkitd, gke-gcloud-auth-plugin, gitlab-pages, gobuster, nvidia-device-plugin, pulumi-language-yaml, prometheus-mongodb-exporter, dex, falcoctl, flux-image-automation-controller, flux, kaf, sigstore-scaffolding, frp, kubernetes-dashboard-metrics-scraper,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: buildkitd, amass, calico, istio-envoy, gke-gcloud-auth-plugin, gitlab-pages, gobuster, nats, nvidia-device-plugin, pulumi-language-yaml, dex, kaf, sigstore-scaffolding, frp, oauth2-proxy, kots, up, cert-manager, flux-notification-controller, helm,...

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: buildkitd, libssh, amass, calico, actions-runner-controller, trivy, gitlab-pages, gobuster, nats, prometheus-mongodb-exporter, dex, falcoctl, flux-image-automation-controller, flux, kaf, sigstore-scaffolding, frp, oauth2-proxy, prometheus-nats-exporter, kots, up,...

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: rekor, skaffold, wolfictl, flux-source-controller, aactl, external-secrets-operator, apko, vault, weaviate, kargo, ko, istio-pilot-agent, zot, keda, timestamp-authority, tekton-chains, terragrunt, flux-kustomize-controller, istio-pilot-discovery, nerdctl, goreleaser,.....

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: buildkitd, flux-source-controller, aactl, dynamic-localpv-provisioner, calico, weaviate, external-dns, mc, ko, secrets-store-csi-driver, gitlab-pages, keda, nvidia-device-plugin, pulumi-language-yaml, gatekeeper, flux-kustomize-controller, influxd, coredns, cosign,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...

GHSA-V53G-5GJP-272R vulnerabilities

Vulnerabilities for packages: helm-push, k9s, flux-source-controller, kots, up, cert-manager, chartmuseum, helm-operator, eksctl, istio-operator, trivy, zot, kubescape, k8sgpt, flux-helm-controller, zarf,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: buildkitd, snyk-cli, local-static-provisioner, oras, capslock, crane, glab, gke-gcloud-auth-plugin, newrelic-infra-operator, tempo, gitlab-pages, trivy, nvidia-device-plugin, neuvector-scanner, pulumi-language-yaml, rootlesskit, docker-credential-ecr-login, flannel,...

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: buildkitd, skaffold, k9s, aactl, crane, k3s, newrelic-infrastructure-agent, eksctl, kargo, istio-pilot-agent, trivy, zot, ctop, tekton-chains, istio-pilot-discovery, nerdctl, goreleaser, cosign, falcoctl, flux-image-reflector-controller, cri-tools, scorecard, skopeo,.....

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: buildkitd, kwok, amass, oras, calico, actions-runner-controller, capslock, gke-gcloud-auth-plugin, newrelic-infra-operator, tailscale, gobuster, nats, nvidia-device-plugin, kubeadm-controlplane-controller, kuberay-operator, pulumi-language-yaml,...