Malwarebytes Premium stops 100% of malware during AV Lab test
Malwarebytes Premium has maintained its long-running, perfect record in protecting users against online threats by blocking 100% of the malware samples deployed in the AV Lab Cybersecurity Foundation’s “Advanced In-The-Wild Malware Test.” For its performance in the May 2024 evaluation,...
7AI Score
Apple Patches AirPods Bluetooth Vulnerability That Could Allow Eavesdropping
Apple has released a firmware update for AirPods that could allow a malicious actor to gain access to the headphones in an unauthorized manner. Tracked as CVE-2024-27867, the authentication issue affects AirPods (2nd generation and later), AirPods Pro (all models), AirPods Max, Powerbeats Pro, and....
6.7AI Score
0.0004EPSS
Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities
Summary IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities listed herein. Vulnerability Details ** CVEID: CVE-2023-49569 DESCRIPTION: **go-git could allow a remote attacker to traverse directories on the system. By sending a specially crafted request using the...
9.8CVSS
10AI Score
EPSS
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: envoy-ratelimit, gobuster, nats, aws-efs-csi-driver, thanos, kots, kubernetes-csi-livenessprobe, external-dns, grype, ollama, pulumi-language-dotnet, tctl, metacontroller, tomcat, vault-csi-provider, prometheus, up, gitlab-runner, telegraf,...
7.5CVSS
9AI Score
0.732EPSS
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: kubescape, cosign, dex, vexctl, cert-manager, rekor, tekton-pipelines, slsa-verifier, sops, tkn, argo-workflows, oauth2-proxy, kots, terragrunt, spire-server, argo-cd, aactl, kyverno, tekton-chains, external-secrets-operator, gitsign, cloudflared, fulcio,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, falcoctl, nats, trillian, osv-scanner, step-ca, kaniko, aws-efs-csi-driver, thanos, kubernetes-csi-external-provisioner, capslock, k8sgpt, datadog-agent, kots, kubeadm-bootstrap-controller, spicedb, temporal-server,...
7.5AI Score
Vulnerabilities for packages: crossplane-provider-azure, cosign, falcoctl, kubescape, influxd, terraform, loki, step-ca, vexctl, flux, cert-manager, gomplate, bank-vaults, rekor, slsa-verifier, sops, tekton-pipelines, guac, tkn, snyk-cli, k3s, opentofu, policy-controller, buildkitd, spire-server,.....
6CVSS
6.2AI Score
0.0004EPSS
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.8AI Score
0.0004EPSS
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, nri-jmx, xcaddy, kaniko, capslock, nri-consul, spicedb, temporal-server, velero-plugin-for-aws, ollama, timestamp-authority, pulumi-language-dotnet, hubble, runc, vault-csi-provider, trivy, nats-server, telegraf, supercronic,...
6.8AI Score
0.0004EPSS
GHSA-5FQ7-4MXC-535H vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, trillian, osv-scanner, step-ca, logstash, flyte, aws-efs-csi-driver, thanos, go, gosu, capslock, jitsucom-bulker, k8sgpt, kubernetes-csi-external-provisioner, local-static-provisioner, dask-gateway, snyk-cli, helm-push,...
7.5AI Score
CVE-2024-24789 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, nri-jmx, xcaddy, kaniko, capslock, nri-consul, snyk-cli, spicedb, velero-plugin-for-aws, ollama, kube-vip, timestamp-authority, pulumi-language-dotnet, runc, vault-csi-provider, trivy, nats-server, telegraf, supercronic, nri-nginx,....
5.5CVSS
6.1AI Score
0.0004EPSS
GHSA-V6V8-XJ6M-XWQH vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, cosign, falcoctl, kubescape, influxd, terraform, loki, step-ca, vexctl, flux, cert-manager, gomplate, bank-vaults, rekor, slsa-verifier, sops, tekton-pipelines, guac, tkn, snyk-cli, k3s, opentofu, policy-controller, buildkitd, spire-server,.....
7.5AI Score
Vulnerabilities for packages: crossplane-provider-azure, gobuster, falcoctl, trillian, aws-efs-csi-driver, thanos, kubernetes-csi-external-provisioner, k8sgpt, kots, kubernetes-csi-livenessprobe, prometheus-statsd-exporter, external-dns, ollama, aws-ebs-csi-driver, pulumi-language-dotnet,...
6.1CVSS
7.3AI Score
0.001EPSS
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.8AI Score
0.0004EPSS
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.5AI Score
GHSA-M5VV-6R4H-3VJ9 vulnerabilities
Vulnerabilities for packages: kubescape, cosign, falcoctl, loki, step-ca, flux, cert-manager, flyte, bank-vaults, harbor-registry, rekor, sops, tekton-pipelines, guac, thanos, k8sgpt, argo-workflows, tkn, terragrunt, boring-registry, policy-controller, buildkitd, airflow, spire-server, cortex,...
7.5AI Score
GHSA-2HMF-46V7-V6FX vulnerabilities
Vulnerabilities for packages: melange, external-dns, guac, dagger,...
7.5AI Score
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, falcoctl, nats, trillian, osv-scanner, step-ca, kaniko, aws-efs-csi-driver, thanos, kubernetes-csi-external-provisioner, capslock, k8sgpt, datadog-agent, kots, kubeadm-bootstrap-controller, spicedb, temporal-server,...
6.7AI Score
0.0004EPSS
CVE-2023-48795 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, gobuster, falcoctl, nats, trillian, step-ca, thanos, helm-push, kots, temporal-server, prometheus-statsd-exporter, external-dns, grype, ollama, nerdctl, crossplane-provider-aws, tekton-chains, vault-csi-provider, trivy, prometheus, up,...
5.9CVSS
7.1AI Score
0.963EPSS
GHSA-HJ3V-M684-V259 vulnerabilities
Vulnerabilities for packages: minio, falcoctl, istio-pilot-agent, istio-pilot-discovery, istio-operator, kyverno, istio-cni, falco, mc, external-secrets-operator, boring-registry,...
7.5AI Score
CVE-2024-24787 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, trillian, osv-scanner, step-ca, logstash, flyte, aws-efs-csi-driver, thanos, go, gosu, capslock, jitsucom-bulker, k8sgpt, kubernetes-csi-external-provisioner, local-static-provisioner, dask-gateway, snyk-cli, helm-push,...
6.5AI Score
0.0004EPSS
CVE-2024-35255 vulnerabilities
Vulnerabilities for packages: kubescape, cosign, falcoctl, loki, step-ca, flux, cert-manager, flyte, bank-vaults, harbor-registry, rekor, sops, tekton-pipelines, guac, thanos, k8sgpt, argo-workflows, tkn, terragrunt, boring-registry, policy-controller, buildkitd, airflow, spire-server, cortex,...
5.5CVSS
6AI Score
0.0004EPSS
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, nri-jmx, xcaddy, kaniko, capslock, nri-consul, spicedb, temporal-server, velero-plugin-for-aws, ollama, timestamp-authority, pulumi-language-dotnet, hubble, runc, vault-csi-provider, trivy, nats-server, telegraf, supercronic,...
7.5AI Score
GHSA-2JWV-JMQ4-4J3R vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, trillian, osv-scanner, step-ca, logstash, flyte, aws-efs-csi-driver, thanos, go, gosu, capslock, jitsucom-bulker, k8sgpt, kubernetes-csi-external-provisioner, local-static-provisioner, dask-gateway, snyk-cli, helm-push,...
7.5AI Score
CVE-2024-24790 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, nri-jmx, xcaddy, kaniko, capslock, nri-consul, snyk-cli, spicedb, velero-plugin-for-aws, ollama, kube-vip, timestamp-authority, pulumi-language-dotnet, runc, vault-csi-provider, trivy, nats-server, telegraf, supercronic, nri-nginx,....
9.8CVSS
9.8AI Score
0.001EPSS
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, gobuster, falcoctl, nats, trillian, aws-efs-csi-driver, thanos, go, kubernetes-csi-external-provisioner, k8sgpt, kots, kubernetes-csi-livenessprobe, prometheus-statsd-exporter, external-dns, ollama, aws-ebs-csi-driver,...
7.5CVSS
8.4AI Score
0.002EPSS
GHSA-C5Q2-7R4C-MV6G vulnerabilities
Vulnerabilities for packages: cosign, dex, falcoctl, dgraph, step-ca, vexctl, gomplate, cert-manager, rekor, tekton-pipelines, slsa-verifier, tkn, frp, guac, argo-workflows, istio-cni, oauth2-proxy, terragrunt, policy-controller, grpc-health-probe, spire-server, minio, step, argo-cd, aactl,...
7.5AI Score
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.5AI Score
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.5AI Score
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.5AI Score
CVE-2023-47108 vulnerabilities
Vulnerabilities for packages: keda, temporal-server, envoy-ratelimit, kubescape, argo-cd, docker-compose, kubernetes, kubernetes-csi-external-resizer, cert-manager, aws-ebs-csi-driver, kine, kubevela, kyverno, temporal, containerd, cri-tools,...
7.5CVSS
7.7AI Score
0.001EPSS
GHSA-8PGV-569H-W5RW vulnerabilities
Vulnerabilities for packages: keda, temporal-server, envoy-ratelimit, kubescape, argo-cd, docker-compose, kubernetes, kubernetes-csi-external-resizer, cert-manager, aws-ebs-csi-driver, kine, kubevela, kyverno, temporal, containerd, cri-tools,...
7.5AI Score
CVE-2023-49559 vulnerabilities
Vulnerabilities for packages: melange, external-dns, guac, dagger,...
6.6AI Score
0.0004EPSS
6.5CVSS
7.5AI Score
0.004EPSS
GHSA-49GW-VXVF-FC2G vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, nri-jmx, xcaddy, kaniko, capslock, nri-consul, snyk-cli, spicedb, velero-plugin-for-aws, ollama, kube-vip, timestamp-authority, pulumi-language-dotnet, runc, vault-csi-provider, trivy, nats-server, telegraf, supercronic, nri-nginx,....
7.5AI Score
CVE-2024-28180 vulnerabilities
Vulnerabilities for packages: cosign, dex, falcoctl, dgraph, step-ca, vexctl, gomplate, cert-manager, rekor, tekton-pipelines, slsa-verifier, tkn, frp, guac, argo-workflows, istio-cni, oauth2-proxy, terragrunt, policy-controller, grpc-health-probe, spire-server, minio, step, argo-cd, aactl,...
4.3CVSS
6AI Score
0.0005EPSS
GHSA-4374-P667-P6C8 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, gobuster, falcoctl, nats, trillian, aws-efs-csi-driver, thanos, go, kubernetes-csi-external-provisioner, k8sgpt, kots, kubernetes-csi-livenessprobe, prometheus-statsd-exporter, external-dns, ollama, aws-ebs-csi-driver,...
7.5AI Score
GHSA-45X7-PX36-X8W8 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, gobuster, falcoctl, nats, trillian, step-ca, thanos, helm-push, kots, temporal-server, prometheus-statsd-exporter, external-dns, grype, ollama, nerdctl, crossplane-provider-aws, tekton-chains, vault-csi-provider, trivy, prometheus, up,...
7.5AI Score
GHSA-2WRH-6PVC-2JM9 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, gobuster, falcoctl, trillian, aws-efs-csi-driver, thanos, kubernetes-csi-external-provisioner, k8sgpt, kots, kubernetes-csi-livenessprobe, prometheus-statsd-exporter, external-dns, ollama, aws-ebs-csi-driver, pulumi-language-dotnet,...
7.5AI Score
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: envoy-ratelimit, cosign, dex, kubescape, influxd, terraform, dgraph, helm, cert-manager, aws-efs-csi-driver, slsa-verifier, prometheus-stackdriver-exporter, thanos, prometheus-adapter, conftest, kubernetes-csi-external-attacher, kubernetes-csi-node-driver-registrar,...
7.5AI Score
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: envoy-ratelimit, gobuster, nats, aws-efs-csi-driver, thanos, kots, kubernetes-csi-livenessprobe, external-dns, grype, ollama, pulumi-language-dotnet, tctl, metacontroller, tomcat, vault-csi-provider, prometheus, up, gitlab-runner, telegraf,...
7.5AI Score
CVE-2024-24783 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.8AI Score
0.0004EPSS
CVE-2024-24785 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.8AI Score
0.0004EPSS
GHSA-32CH-6X54-Q4H9 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
7.5AI Score
CVE-2024-28122 vulnerabilities
Vulnerabilities for packages: minio, falcoctl, istio-pilot-agent, istio-pilot-discovery, istio-operator, kyverno, istio-cni, falco, mc, external-secrets-operator, boring-registry,...
6.8CVSS
6.8AI Score
0.0004EPSS
CVE-2024-24788 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, trillian, osv-scanner, step-ca, logstash, flyte, aws-efs-csi-driver, thanos, go, gosu, capslock, jitsucom-bulker, k8sgpt, kubernetes-csi-external-provisioner, local-static-provisioner, dask-gateway, snyk-cli, helm-push,...
6.5AI Score
0.0004EPSS
GHSA-236W-P7WF-5PH8 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, falcoctl, nri-jmx, xcaddy, kaniko, capslock, nri-consul, snyk-cli, spicedb, velero-plugin-for-aws, ollama, kube-vip, timestamp-authority, pulumi-language-dotnet, runc, vault-csi-provider, trivy, nats-server, telegraf, supercronic, nri-nginx,....
7.5AI Score
CVE-2023-45290 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure, envoy-ratelimit, gobuster, nats, trillian, flannel-cni-plugin, bazelisk, aws-efs-csi-driver, thanos, gosu, kubernetes-csi-external-provisioner, capslock, k8sgpt, cni-plugins, dask-gateway, datadog-agent, helm-push,...
6AI Score
0.0004EPSS
CVE-2024-21664 vulnerabilities
Vulnerabilities for packages: minio, kubescape, falcoctl, istio-pilot-agent, istio-pilot-discovery, tekton-chains, vexctl, istio-operator, boring-registry, kyverno, istio-cni, falco, mc, external-secrets-operator, gitsign,...
7.5CVSS
6.1AI Score
0.001EPSS
GHSA-PVCR-V8J8-J5Q3 vulnerabilities
Vulnerabilities for packages: minio, kubescape, falcoctl, istio-pilot-agent, istio-pilot-discovery, tekton-chains, vexctl, istio-operator, boring-registry, kyverno, istio-cni, falco, mc, external-secrets-operator, gitsign,...
7.5AI Score