Updated golang packages fix security vulnerability
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop....
0.0004EPSS
dahaboo.com Cross Site Scripting vulnerability OBB-3928491
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
In Tor Arti before 1.2.3, circuits sometimes incorrectly have a length of 3 (with full vanguards), aka...
In Tor Arti before 1.2.3, STUB circuits incorrectly have a length of 2 (with lite vanguards), aka...
In the Linux kernel before 6.9, an untrusted hypervisor can inject virtual interrupt 29 (#VC) at any point in time and can trigger its handler. This affects AMD SEV-SNP and AMD...
In the Linux kernel through 6.9, an untrusted hypervisor can inject virtual interrupts 0 and 14 at any point in time and can trigger the SIGFPE signal handler in userspace applications. This affects AMD SEV-SNP and AMD...
6.2AI Score
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be...
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be...
alliedrisksecurity.com.au Cross Site Scripting vulnerability OBB-3928490
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: falco, gatekeeper, prometheus-bind-exporter, envoy-ratelimit, atlantis, aactl, kyverno, sigstore-scaffolding, bom, opentofu, pulumi-language-yaml, newrelic-infrastructure-agent, haproxy-ingress, nghttp2, thanos, cluster-autoscaler, nri-prometheus, tomcat,...
8.7AI Score
0.72EPSS
CVE-2024-29018 vulnerabilities
Vulnerabilities for packages: aactl, kargo, crossplane, ko, kubescape, buf, buildkitd, grype, spire-server, loki, up, cadvisor, syft, melange, docker-compose, zot, kaniko, dagger, prometheus, conftest, telegraf, tkn, datadog-agent, ctop, trivy,...
5.9AI Score
0.0004EPSS
GHSA-MQ39-4GV4-MVPX vulnerabilities
Vulnerabilities for packages: aactl, kargo, crossplane, ko, kubescape, buf, buildkitd, grype, spire-server, loki, up, cadvisor, syft, melange, docker-compose, zot, kaniko, dagger, prometheus, conftest, telegraf, tkn, datadog-agent, ctop, trivy,...
7.5AI Score
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: argo-cd, cloudflared, falco, kots, cert-manager, tekton-pipelines, rekor, slsa-verifier, aactl, kyverno, terragrunt, traefik, argo-workflows, flux-kustomize-controller, kubescape, external-secrets-operator, cilium-envoy, spire-server, cosign, gitsign,...
7.5AI Score
GHSA-JQ35-85CJ-FJ4P vulnerabilities
Vulnerabilities for packages: falco, cert-manager, k3s, tekton-pipelines, slsa-verifier, aactl, bom, skaffold, chartmuseum, kubescape, loki, up, paranoia, prometheus, tekton-chains, ctop, scorecard, k3d,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: falco, gatekeeper, prometheus-bind-exporter, prometheus-pushgateway, k3s, crossplane-provider-gcp, k8sgpt, envoy-ratelimit, aactl, atlantis, kyverno, kargo, crossplane-provider-aws, grpc-health-probe, newrelic-nri-kube-events, newrelic-infra-operator,...
7.5AI Score
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: falco, gatekeeper, prometheus-bind-exporter, oras, k3s, prometheus-pushgateway, cni-plugins, k8sgpt, envoy-ratelimit, nri-redis, newrelic-infra-operator, bom, eksctl, hubble-ui, esbuild, opentofu, vault-k8s, capslock, kubernetes-csi-external-provisioner,...
6.5AI Score
0.0004EPSS
GHSA-MRWW-27VC-GGHV vulnerabilities
Vulnerabilities for packages: kots, step-ca, telegraf, k3s, keda, trillian, kine, spicedb, caddy, vault, amass, src, temporal-server, ferretdb, argo-workflows,...
7.5AI Score
GHSA-VVPX-J8F3-3W6H vulnerabilities
Vulnerabilities for packages: falco, dynamic-localpv-provisioner, gke-gcloud-auth-plugin, wireguard-go, grpcurl, restic, hey, k3d,...
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
8.1AI Score
0.001EPSS
7.1AI Score
0.002EPSS
7.7AI Score
0.001EPSS
7.5AI Score
7.5AI Score
6.8AI Score
0.0004EPSS
7.5AI Score
0.0004EPSS
6.6AI Score
0.001EPSS
7.2AI Score
0.0004EPSS
GHSA-HPXR-W9W7-G4GV vulnerabilities
Vulnerabilities for packages: zarf, syft, kubescape, grype, k9s,...
7.5AI Score
CVE-2024-24579 vulnerabilities
Vulnerabilities for packages: zarf, syft, kubescape, grype, k9s,...
9.8AI Score
0.001EPSS
7.7AI Score
0.002EPSS
7.5AI Score
7.2AI Score
0.0004EPSS
7.2AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.7AI Score
0.001EPSS
7.5AI Score
0.001EPSS
7.5AI Score
7.5AI Score
0.001EPSS
7.5AI Score
7.5AI Score
7.5AI Score
0.004EPSS
7.5AI Score
7.1AI Score
0.0004EPSS
Vulnerabilities for packages: node-feature-discovery, nodetaint, kubernetes-csi-driver-hostpath, calico, kubernetes-dns-node-cache, spark-operator, ip-masq-agent, cluster-autoscaler, kubernetes, local-static-provisioner, kubeflow-pipelines,...
3.8AI Score
0.0004EPSS