Abap Server & Platform Security Vulnerabilities

CVE-2023-6816 vulnerabilities

Vulnerabilities for packages:...

GHSA-W668-XCXF-V3GG vulnerabilities

Vulnerabilities for packages:...

GHSA-VX3H-CJ8W-2H2C vulnerabilities

Vulnerabilities for packages:...

GHSA-3FPG-J8CW-VCJQ vulnerabilities

Vulnerabilities for packages:...

GHSA-MQQF-4P7R-RF89 vulnerabilities

Vulnerabilities for packages:...

GHSA-Q6W6-RJJJ-5P52 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-29903 vulnerabilities

Vulnerabilities for packages: gitsign, goreleaser, spire-server, tekton-chains, melange, apko, tkn, kubescape, aactl, zot, falco, falcoctl, skaffold, flux-source-controller, ko, wolfictl, vexctl, neuvector-sigstore-interface, zarf, policy-controller,...

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: bank-vaults, boring-registry, helm-docs, buf, kubevela, configmap-reload, nri-prometheus, tkn, libnvidia-container, flux-notification-controller, gops, litefs, shfmt, php-fpm_exporter, nerdctl, lazygit, tempo, vexctl, nri-couchbase, kpt, docker, gobuster,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: influx, cass-operator, gobuster, cni-plugins, gke-gcloud-auth-plugin, goreleaser, scorecard, helm-push, protoc-gen-go-grpc, go-bindata, k3d, petname, kind, wait-for-port, kubernetes-dashboard-metrics-scraper, smarter-device-manager, render-template, configmap-reload,.....

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: influx, cass-operator, gobuster, cni-plugins, gke-gcloud-auth-plugin, goreleaser, scorecard, helm-push, protoc-gen-go-grpc, go-bindata, k3d, petname, kind, wait-for-port, kubernetes-dashboard-metrics-scraper, smarter-device-manager, render-template, configmap-reload,.....

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: influx, cass-operator, gobuster, cni-plugins, gke-gcloud-auth-plugin, goreleaser, scorecard, helm-push, protoc-gen-go-grpc, go-bindata, k3d, petname, kind, wait-for-port, kubernetes-dashboard-metrics-scraper, smarter-device-manager, render-template, configmap-reload,.....

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: keda, gitsign, goreleaser, spire-server, terragrunt, fulcio, containerd, argo-workflows, istio-pilot-agent, tekton-chains, flux-kustomize-controller, kargo, rook, step-ca, timestamp-authority, istio-pilot-discovery, oauth2-proxy, melange, cilium, dex, cloudflared,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: bank-vaults, kaf, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, istio-pilot-agent, tekton-chains, thanos-operator, istio-pilot-discovery, trillian, karpenter, go, prometheus-node-exporter, kubevela,...

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: bank-vaults, kaf, vault-k8s, boring-registry, gitness, istio-pilot-agent, docker-credential-acr-env, fq, tekton-chains, istio-pilot-discovery, trillian, prometheus-node-exporter, buf, dockerize, cadvisor, go-licenses, tkn, kubescape, kubewatch, nsc, helm, aactl,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: bank-vaults, kaf, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, thanos-operator, trillian, karpenter, prometheus-node-exporter, kubevela, kubernetes-csi-external-resizer, nri-prometheus, tkn, kubernetes-csi-livenessprobe,...

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: coredns, keda, kubernetes-csi-external-attacher, goreleaser, scorecard, kubeflow-katib, terraform-provider-azurerm, tctl, kots, vault-csi-provider, k3d, flux-kustomize-controller, up, gitlab-pages, kubevela, oauth2-proxy, thanos, dex, prometheus, telegraf, dgraph,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: kaf, fuse-overlayfs-snapshotter, gitness, kubevela, tomcat, nri-prometheus, kubescape, kubernetes-csi-livenessprobe, kubewatch, helm, flux-notification-controller, aactl, hey, spark-operator, frp, node-problem-detector, envoy-ratelimit, grpcurl, dotnet, skaffold,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

CVE-2024-28122 vulnerabilities

Vulnerabilities for packages: istio-pilot-discovery, falco, spire-server, istio-cni, falcoctl, boring-registry, istio-operator, istio-pilot-agent, kyverno, external-secrets-operator, minio,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: bank-vaults, kaf, kubernetes-csi-external-snapshotter, vault-k8s, boring-registry, fuse-overlayfs-snapshotter, gitness, docker-credential-acr-env, go-bindata, k9s, tekton-chains, wait-for-port, trillian, karpenter, go, smarter-device-manager, dockerize,...

GHSA-236W-P7WF-5PH8 vulnerabilities

Vulnerabilities for packages: bank-vaults, boring-registry, helm-docs, buf, kubevela, configmap-reload, nri-prometheus, tkn, libnvidia-container, flux-notification-controller, gops, litefs, shfmt, php-fpm_exporter, nerdctl, lazygit, tempo, vexctl, nri-couchbase, kpt, docker, gobuster,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

GHSA-VV9M-32RR-3G55 vulnerabilities

Vulnerabilities for packages: metrics-server, kind,...

CVE-2024-0409 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-0229 vulnerabilities

Vulnerabilities for packages:...

GHSA-RCJ8-JX65-7C4R vulnerabilities

Vulnerabilities for packages:...

GHSA-2X93-8973-5MGQ vulnerabilities

Vulnerabilities for packages:...

CVE-2024-31083 vulnerabilities

Vulnerabilities for packages:...

GHSA-PVCR-V8J8-J5Q3 vulnerabilities

Vulnerabilities for packages: istio-pilot-discovery, gitsign, falco, spire-server, istio-cni, falcoctl, boring-registry, istio-operator, vexctl, istio-pilot-agent, kyverno, tekton-chains, external-secrets-operator, minio, mc,...

CVE-2024-21664 vulnerabilities

Vulnerabilities for packages: istio-pilot-discovery, gitsign, falco, spire-server, istio-cni, falcoctl, boring-registry, istio-operator, vexctl, istio-pilot-agent, kyverno, tekton-chains, external-secrets-operator, minio, mc,...

GHSA-MR45-RX8Q-WCM9 vulnerabilities

Vulnerabilities for packages: telegraf, k3s, minio, nats,...

CVE-2024-27454 vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines-visualization-server,...

GHSA-3RQ5-2G8H-59HC vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines-visualization-server,...

GHSA-PWR2-4V36-6QPR vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines-visualization-server,...

GHSA-44WM-F244-XHP3 vulnerabilities

Vulnerabilities for packages: py3-pillow, pytorch,...

GHSA-9V7R-X7CV-V437 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-21009 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-21054 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-21087 vulnerabilities

Vulnerabilities for packages:...

GHSA-26MF-52P6-23PQ vulnerabilities

Vulnerabilities for packages:...

GHSA-3VX9-2CH5-M6R6 vulnerabilities

Vulnerabilities for packages:...

GHSA-JFV3-GH3J-C5R7 vulnerabilities

Vulnerabilities for packages:...

Exploit for CVE-2024-6387

Link to Qualys Write-Up:...

Exploit for CVE-2024-6387

OpenSSH CVE-2024-6387 Vulnerability Checker Overview...

Security Bulletin: Security vulnerabilities may affect IBM WebSphere Application Server Liberty shipped with with IBM CICS TX Advanced.

Summary Security vulnerabilities may affect IBM WebSphere Application Server Liberty shipped with IBM CICS TX Advanced. IBM CICS TX Advanced has addressed the issues. Vulnerability Details ** CVEID: CVE-2024-25026 DESCRIPTION: **IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere...

CVE-2024-39309

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. A vulnerability in versions prior to 6.5.7 and 7.1.0 allows SQL injection when Parse Server is configured to use the PostgreSQL database. The algorithm to detect SQL injection has been improved.....

CVE-2024-39309

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. A vulnerability in versions prior to 6.5.7 and 7.1.0 allows SQL injection when Parse Server is configured to use the PostgreSQL database. The algorithm to detect SQL injection has been improved.....

CVE-2024-38477

null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Users are recommended to upgrade to version 2.4.60, which fixes this...