Lucene search

K

Weave-gitops Security Vulnerabilities

cve
cve

CVE-2022-23509

Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. GitOps run has a local S3 bucket which it uses for synchronizing files that are later applied against a Kubernetes cluster. The communication between GitOps.....

7.3CVSS

5.9AI Score

0.0004EPSS

2023-01-09 02:15 PM
39
cve
cve

CVE-2022-23508

Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. A vulnerability in GitOps run could allow a local user or process to alter a Kubernetes cluster's resources. GitOps run has a local S3 bucket which it uses...

8.8CVSS

7.5AI Score

0.0004EPSS

2023-01-09 01:15 PM
36
cve
cve

CVE-2022-31098

Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. A vulnerability in the logging of Weave GitOps could allow an authenticated remote attacker to view sensitive cluster configurations, aka KubeConfg, of...

9CVSS

7.3AI Score

0.002EPSS

2022-06-27 10:15 PM
380
5