PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS
PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
continentalpancakehouse.com Cross Site Scripting vulnerability OBB-3931947
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
niagarafallsoptimist.ca Cross Site Scripting vulnerability OBB-3931946
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
luposlittleeataly.com Cross Site Scripting vulnerability OBB-3931945
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
queenscoachrestaurant.com Cross Site Scripting vulnerability OBB-3931944
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
svabinsurance.com Cross Site Scripting vulnerability OBB-3931943
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
hoopsalytics.com Cross Site Scripting vulnerability OBB-3931942
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
GHSA-95PR-FXF5-86GV vulnerabilities
Vulnerabilities for packages: slsa-verifier, tekton-chains, skaffold, spire-server, policy-controller, flux-source-controller, aactl, melange, goreleaser, wolfictl, vexctl, ko, tkn, neuvector-sigstore-interface, apko, gitsign, zot, falcoctl, falco, zarf,...
7.5AI Score
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: aactl, telegraf, git-lfs, kaf, cortex, pulumi, nghttp2, nodetaint, kubeflow-katib, gomplate, fuse-overlayfs-snapshotter, gitness, ip-masq-agent, external-dns, terraform-provider-aws, scorecard, stakater-reloader, oauth2-proxy, dgraph, prometheus-blackbox-exporter,...
8.7AI Score
0.72EPSS
CVE-2024-29018 vulnerabilities
Vulnerabilities for packages: loki, spire-server, aactl, prometheus, up, melange, goreleaser, telegraf, wolfictl, buildkitd, kaniko, dagger, kargo, ko, crossplane, tkn, datadog-agent, grype, ctop, zot, syft, conftest, buf, cadvisor, trivy, docker-compose,...
5.9AI Score
0.0004EPSS
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: slsa-verifier, tekton-chains, spire-server, external-secrets-operator, flux-source-controller, fulcio, aactl, traefik, vexctl, argo-workflows, cilium-envoy, dex, argo-cd, tkn, rekor, cosign, sops, tekton-pipelines, gitsign, keda, cloudflared, istio-pilot-discovery,...
7.5AI Score
GHSA-MQ39-4GV4-MVPX vulnerabilities
Vulnerabilities for packages: loki, spire-server, aactl, prometheus, up, melange, goreleaser, telegraf, wolfictl, buildkitd, kaniko, dagger, kargo, ko, crossplane, tkn, datadog-agent, grype, ctop, zot, syft, conftest, buf, cadvisor, trivy, docker-compose,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, temporal, rabbitmq-messaging-topology-operator, thanos-operator, kyverno-policy-reporter-ui, aactl, spicedb, telegraf, istio-operator, filebeat, kaf, nri-discovery-kubernetes, nri-kubernetes,...
7.5AI Score
CVE-2024-21506 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, py3-pymongo,...
5.3AI Score
0.0004EPSS
CVE-2024-28219 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, py3-pillow,...
6.7AI Score
0.0004EPSS
7.1AI Score
0.0004EPSS
7.5AI Score
7.1AI Score
0.0004EPSS
7.1AI Score
0.0005EPSS
7.5AI Score
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, temporal, thanos-operator, cluster-api-controller, docker-cli, nri-mssql, telegraf, task, filebeat, kaf, newrelic-prometheus-configurator, nri-discovery-kubernetes, nri-mysql, nri-nginx,...
6.5AI Score
0.0004EPSS
CVE-2024-27304 vulnerabilities
Vulnerabilities for packages: trillian, k3s, caddy, argo-workflows, step-ca, temporal-server, keda, amass, kine, vault, kots, spicedb, ferretdb, src, telegraf,...
9.7AI Score
0.0004EPSS
GHSA-MRWW-27VC-GGHV vulnerabilities
Vulnerabilities for packages: trillian, k3s, caddy, argo-workflows, step-ca, temporal-server, keda, amass, kine, vault, kots, spicedb, ferretdb, src, telegraf,...
7.5AI Score
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, kyverno-policy-reporter-ui, spicedb, docker-cli, swagger, telegraf, kaf, influx, rekor, direnv, velero, yq, gitness, ip-masq-agent, external-dns, kafka_exporter, falcoctl, wazero, kubescape, nsc, coredns,...
7AI Score
0.0004EPSS
CVE-2024-24787 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, kyverno-policy-reporter-ui, aactl, spicedb, telegraf, opa, crane, git-lfs, istio-operator, kaf, newrelic-prometheus-configurator, cortex, eksctl, crossplane, rootlesskit, mockery, go-fips, influx, k8sgpt,...
6.5AI Score
0.0004EPSS
GHSA-5FQ7-4MXC-535H vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, kyverno-policy-reporter-ui, aactl, spicedb, telegraf, opa, crane, git-lfs, istio-operator, kaf, newrelic-prometheus-configurator, cortex, eksctl, crossplane, rootlesskit, mockery, go-fips, influx, k8sgpt,...
7.5AI Score
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: slsa-verifier, flannel-cni-plugin, aactl, cni-plugins, mage, docker-cli, protoc-gen-go-grpc, aws-flb-cloudwatch, goreleaser, kubernetes-dashboard-metrics-scraper, sbom-scorecard, cass-operator, gke-gcloud-auth-plugin, prometheus-stackdriver-exporter,...
8.2AI Score
0.001EPSS
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, thanos-operator, aactl, telegraf, git-lfs, kaf, prometheus-mongodb-exporter, pulumi, nodetaint, k8sgpt, kubeflow-katib, nfs-subdir-external-provisioner, gomplate, kube-logging-operator, fuse-overlayfs-snapshotter,....
6.5AI Score
0.001EPSS
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, temporal, rabbitmq-messaging-topology-operator, thanos-operator, kyverno-policy-reporter-ui, aactl, spicedb, telegraf, istio-operator, filebeat, kaf, nri-discovery-kubernetes, nri-kubernetes,...
6.7AI Score
0.0004EPSS
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, temporal, thanos-operator, cluster-api-controller, docker-cli, nri-mssql, telegraf, task, filebeat, kaf, newrelic-prometheus-configurator, nri-discovery-kubernetes, nri-mysql, nri-nginx,...
6.5AI Score
0.0004EPSS
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, temporal, thanos-operator, cluster-api-controller, docker-cli, nri-mssql, telegraf, task, filebeat, kaf, newrelic-prometheus-configurator, nri-discovery-kubernetes, nri-mysql, nri-nginx,...
7.5AI Score
GHSA-JJG7-2V4V-X38H vulnerabilities
Vulnerabilities for packages: kubeflow-jupyter-web-app, kubeflow-volumes-web-app, jwt-tool, dask-gateway, k8s-sidecar, py3-cassandra-medusa, az, py3.10-tensorflow-core, confluent-docker-utils, ggshield, kubeflow-pipelines-visualization-server, datadog-agent, kubeflow-pipelines, kubeflow-katib,...
7.5AI Score
GHSA-HJ3V-M684-V259 vulnerabilities
Vulnerabilities for packages: istio-operator, spire-server, falcoctl, external-secrets-operator, boring-registry, minio, falco, istio-pilot-agent, istio-pilot-discovery, kyverno, mc,...
7.5AI Score
7.5AI Score
7.7AI Score
0.001EPSS
7.5AI Score
Vulnerabilities for packages: kubeflow-jupyter-web-app, kubeflow-volumes-web-app, jwt-tool, dask-gateway, k8s-sidecar, py3-cassandra-medusa, az, py3.10-tensorflow-core, confluent-docker-utils, ggshield, kubeflow-pipelines-visualization-server, datadog-agent, kubeflow-pipelines, kubeflow-katib,...
6.5AI Score
7.5AI Score
7.1AI Score
0.0005EPSS
7.1AI Score
0.0004EPSS
CVE-2023-48795 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, temporal, aactl, nri-mssql, telegraf, git-lfs, istio-operator, kaf, prometheus-mongodb-exporter, cortex, eksctl, pulumi, crossplane, kubeflow-katib, nfs-subdir-external-provisioner, gomplate, local-path-provisioner, rekor, vault-csi-provider,...
6.7AI Score
0.962EPSS
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, temporal, thanos-operator, cluster-api-controller, docker-cli, nri-mssql, telegraf, task, filebeat, kaf, newrelic-prometheus-configurator, nri-discovery-kubernetes, nri-mysql, nri-nginx,...
7.5AI Score
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, temporal, thanos-operator, cluster-api-controller, docker-cli, nri-mssql, telegraf, task, filebeat, kaf, newrelic-prometheus-configurator, nri-discovery-kubernetes, nri-mysql, nri-nginx,...
7.5AI Score
GHSA-7JWH-3VRQ-Q3M8 vulnerabilities
Vulnerabilities for packages: trillian, k3s, caddy, argo-workflows, step-ca, temporal-server, keda, amass, kine, kots, spicedb, ferretdb, src, telegraf,...
7.5AI Score
CVE-2023-47108 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, k3s, kubevela, temporal, cert-manager, temporal-server, envoy-ratelimit, keda, cri-tools, kine, argo-cd, kubernetes, containerd, aws-ebs-csi-driver, kyverno, docker-compose,...
7.7AI Score
0.001EPSS
GHSA-8PGV-569H-W5RW vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, k3s, kubevela, temporal, cert-manager, temporal-server, envoy-ratelimit, keda, cri-tools, kine, argo-cd, kubernetes, containerd, aws-ebs-csi-driver, kyverno, docker-compose,...
7.5AI Score
8.4AI Score
0.001EPSS
9.2AI Score
0.002EPSS
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, kubernetes-dashboard, temporal, thanos-operator, cluster-api-controller, docker-cli, nri-mssql, telegraf, task, filebeat, kaf, newrelic-prometheus-configurator, nri-discovery-kubernetes, nri-mysql, nri-nginx,...
7.5AI Score