Lucene search
K

5136 matches found

Chainguard
Chainguard
added 5 days ago9 views

GHSA-JMF6-3V74-7X28 vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-qemu-melange, linux-aws...

6.1AI score
Exploits0
Chainguard
Chainguard
added 5 days ago7 views

GHSA-MP79-8QQ6-QP9G vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-qemu-melange, linux-aws...

6.1AI score
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

GHSA-JFWG-QVFJ-22X4 vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-qemu-melange, linux-aws...

6.1AI score
Exploits0
Chainguard
Chainguard
added 5 days ago15 views

CVE-2026-53192 vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-qemu-melange, linux-aws...

7.8CVSS6.1AI score0.00134EPSS
Exploits0
NVD
NVD
added last week13 views

CVE-2026-56140

Improper Input Validation vulnerability in Apache Camel AWS SNS component. The camel-aws2-sns component filters Camel headers through a component-specific HeaderFilterStrategy, Sns2HeaderFilterStrategy. Like the sibling Sqs2HeaderFilterStrategy, it originally configured only an outbound filter...

9.8CVSS0.00427EPSS
Exploits0References1
NVD
NVD
added last week7 views

CVE-2026-46590

Deserialization of Untrusted Data vulnerability in Apache Camel PQC component. The camel-pqc component persists post-quantum key metadata KeyMetadata through pluggable KeyLifecycleManager implementations. HashicorpVaultKeyLifecycleManager and AwsSecretsManagerKeyLifecycleManager read that metadat...

8.8CVSS0.00485EPSS
Exploits0References1
NVD
NVD
added last week9 views

CVE-2026-43867

Deserialization of Untrusted Data vulnerability in Apache Camel PQC Component. The camel-pqc component persists post-quantum key metadata KeyMetadata through pluggable KeyLifecycleManager implementations. AwsSecretsManagerKeyLifecycleManager.deserializeMetadata reads that metadata back from the...

9.8CVSS0.00691EPSS
Exploits0References1
NVD
NVD
added last week5 views

CVE-2026-46456

Improper Input Validation vulnerability in Apache Camel AWS2-SQS Component. The camel-aws2-sqs component map inbound message attributes into the Camel Exchange through a component-specific HeaderFilterStrategy. Sqs2HeaderFilterStrategy configured only an outbound filter setOutFilterPattern, which...

9.8CVSS0.00472EPSS
Exploits0References2
CVE
CVE
added last week14 views

CVE-2026-43867

The CVE concerns Apache Camel’s PQC component where AwsSecretsManagerKeyLifecycleManager.deserializeMetadata() Base64-decodes and deserializes persisted KeyMetadata via a raw java.io.ObjectInputStream.readObject() without an ObjectInputFilter or class allow-list. A user who can write to the confi...

9.8CVSS6.4AI score0.00691EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added last week6 views

CVE-2026-46456

Improper Input Validation vulnerability in Apache Camel AWS2-SQS Component. The camel-aws2-sqs component map inbound message attributes into the Camel Exchange through a component-specific HeaderFilterStrategy. Sqs2HeaderFilterStrategy configured only an outbound filter setOutFilterPattern, which...

6AI score0.00472EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/07/03 2:25 a.m.10 views

CVE-2026-54430

A flaw was found in liboauth2 in the oauth2josejwksawsalbresolve function. The AWS ALB JWT verifier reads the signer and kid fields from the unverified JWT header. When signer matches the configured ARN, kid is appended to the ALB base URL without path sanitization, and an HTTP GET request is...

5.8CVSS5.8AI score0.00121EPSS
Exploits0References6
Chainguard
Chainguard
added 2026/07/02 2:16 p.m.10 views

CVE-2026-50162 vulnerabilities

Vulnerabilities for packages: opentofu-fips, linkerd2, headlamp, cert-manager-cmctl-fips, manifest-tool, rancher, cluster-api-helm-controller-fips, gatekeeper, kargo, kube-arangodb, zarf, xeol, opentofu, kots, rancher-fleet-fips, trivy, kgateway-fips, kgateway, helm-set-status, kube-mgmt-fips,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/07/02 2:16 p.m.11 views

GHSA-VH4V-2XQ2-G5CG vulnerabilities

Vulnerabilities for packages: opentofu-fips, linkerd2, headlamp, cert-manager-cmctl-fips, manifest-tool, rancher, cluster-api-helm-controller-fips, gatekeeper, kargo, kube-arangodb, zarf, xeol, opentofu, kots, rancher-fleet-fips, trivy, kgateway-fips, kgateway, helm-set-status, kube-mgmt-fips,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/07/02 2:16 p.m.16 views

GHSA-JXPM-75MH-9FP7 vulnerabilities

Vulnerabilities for packages: opentofu-fips, linkerd2, headlamp, cert-manager-cmctl-fips, manifest-tool, rancher, cluster-api-helm-controller-fips, gatekeeper, kargo, kube-arangodb, zarf, xeol, opentofu, kots, rancher-fleet-fips, trivy, kgateway-fips, kgateway, helm-set-status, kube-mgmt-fips,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/07/02 2:16 p.m.8 views

CVE-2026-50151 vulnerabilities

Vulnerabilities for packages: opentofu-fips, linkerd2, headlamp, cert-manager-cmctl-fips, manifest-tool, rancher, cluster-api-helm-controller-fips, gatekeeper, kargo, kube-arangodb, zarf, xeol, opentofu, kots, rancher-fleet-fips, trivy, kgateway-fips, kgateway, helm-set-status, kube-mgmt-fips,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/07/02 2:16 p.m.16 views

GHSA-VH4V-2XQ2-G5CG vulnerabilities

Vulnerabilities for packages: zarf, k9s, helm-push, kyverno, conftest, tigera-operator, trivy, tw, kubescape, linkerd2, rancher-agent, ratify, steampipe, eksctl, rancher, kargo, kubescape-operator, maru, trivy-operator, argo-cd, helm-operator, rancher-helm, xeol, cilium-cli, vcluster,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/07/02 2:16 p.m.15 views

GHSA-JXPM-75MH-9FP7 vulnerabilities

Vulnerabilities for packages: zarf, k9s, helm-push, kyverno, conftest, tigera-operator, trivy, tw, kubescape, linkerd2, rancher-agent, ratify, steampipe, eksctl, rancher, kargo, kubescape-operator, maru, trivy-operator, argo-cd, helm-operator, rancher-helm, xeol, cilium-cli, vcluster,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/07/02 2:16 p.m.13 views

CVE-2026-50162 vulnerabilities

Vulnerabilities for packages: zarf, k9s, helm-push, kyverno, conftest, tigera-operator, trivy, tw, kubescape, linkerd2, rancher-agent, ratify, steampipe, eksctl, rancher, kargo, kubescape-operator, maru, trivy-operator, argo-cd, helm-operator, rancher-helm, xeol, cilium-cli, vcluster,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/07/02 2:16 p.m.15 views

GHSA-8XWF-RJM4-XVHV vulnerabilities

Vulnerabilities for packages: zarf, k9s, helm-push, kyverno, conftest, tigera-operator, trivy, tw, kubescape, linkerd2, rancher-agent, ratify, steampipe, eksctl, rancher, kargo, kubescape-operator, maru, trivy-operator, argo-cd, helm-operator, rancher-helm, xeol, cilium-cli, vcluster,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/07/02 2:16 p.m.14 views

CVE-2026-50151 vulnerabilities

Vulnerabilities for packages: zarf, k9s, helm-push, kyverno, conftest, tigera-operator, trivy, tw, kubescape, linkerd2, rancher-agent, ratify, steampipe, eksctl, rancher, kargo, kubescape-operator, maru, trivy-operator, argo-cd, helm-operator, rancher-helm, xeol, cilium-cli, vcluster,...

6.1AI score
Exploits0
Rows per page
Query Builder