42 matches found
CVE-2026-41185
When Calico is configured with the Azure IPAM plugin, the Calico CNI binary mutates the incoming CNI configuration to attach subnet information before delegating to the IPAM plugin. After mutating, the Azure IPAM helper logs the entire unmarshaled configuration map stdinData at INFO level to...
CVE-2026-41185 ServiceAccount token disclosure via Azure IPAM CNI plugin logs
When Calico is configured with the Azure IPAM plugin, the Calico CNI binary mutates the incoming CNI configuration to attach subnet information before delegating to the IPAM plugin. After mutating, the Azure IPAM helper logs the entire unmarshaled configuration map stdinData at INFO level to...
CVE-2026-41185 ServiceAccount token disclosure via Azure IPAM CNI plugin logs
When Calico is configured with the Azure IPAM plugin, the Calico CNI binary mutates the incoming CNI configuration to attach subnet information before delegating to the IPAM plugin. After mutating, the Azure IPAM helper logs the entire unmarshaled configuration map stdinData at INFO level to...
EUVD-2026-32933
When Calico is configured with the Azure IPAM plugin, the Calico CNI binary mutates the incoming CNI configuration to attach subnet information before delegating to the IPAM plugin. After mutating, the Azure IPAM helper logs the entire unmarshaled configuration map stdinData at INFO level to...
Tigera Calico 安全漏洞
Tigera Calico is an open-source network security solution developed by the American company Tigera, designed for container, virtual machine, and host workloads. Tigera Calico has a security vulnerability, which stems from the Azure IPAM plugin recording unencrypted configuration mappings in logs...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: helm, nfs-subdir-external-provisioner, capslock, secrets-store-csi-driver-provider-gcp, secrets-store-csi-driver, glab, tetragon, liquibase-package-manager, cluster-api-provider-vsphere, logstash-exporter, gops, pvc-autoresizer, chartmuseum, kube-metrics-adapter,...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: helm, nfs-subdir-external-provisioner, secrets-store-csi-driver-provider-gcp, secrets-store-csi-driver, glab, tetragon, liquibase-package-manager, cluster-api-provider-vsphere, logstash-exporter, pvc-autoresizer, chartmuseum, kube-metrics-adapter,...
CVE-2025-67499 vulnerabilities
Vulnerabilities for packages: flannel, docker-fips, multus-cni-fips, istio, calico, rootlesskit-fips, flannel-fips, nerdctl, amazon-k8s-cni-fips, buildah, containerd-fips, rke2-runtime, azure-ipam, multus-cni, rootlesskit, kuma, podman, containerd, nerdctl-fips, istio-fips, buildkitd, k3s,...
GHSA-JV3W-X3R3-G6RM vulnerabilities
Vulnerabilities for packages: flannel, docker-fips, multus-cni-fips, istio, calico, rootlesskit-fips, flannel-fips, nerdctl, amazon-k8s-cni-fips, buildah, containerd-fips, rke2-runtime, azure-ipam, multus-cni, rootlesskit, kuma, podman, containerd, nerdctl-fips, istio-fips, buildkitd, k3s,...
CVE-2025-67499 vulnerabilities
Vulnerabilities for packages: containerd, calico, buildah, azure-ipam, k3s, rootlesskit, multus-cni, podman, kuma, nerdctl, flannel, docker, istio, buildkitd, datadog-agent...
GHSA-JV3W-X3R3-G6RM vulnerabilities
Vulnerabilities for packages: containerd, calico, buildah, azure-ipam, k3s, rootlesskit, multus-cni, podman, kuma, nerdctl, flannel, docker, istio, buildkitd, datadog-agent...
GHSA-7WWX-XJ66-R44X vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver, kubernetes-dashboard-metrics-scraper, secrets-store-csi-driver-provider-gcp, sigstore-scaffolding, wave, kapp, nsc, mods, kubebuilder, kyverno, metacontroller, vt-cli,...
GHSA-9GCR-GP5F-JW27 vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver, kubernetes-dashboard-metrics-scraper, sigstore-scaffolding, wave, kapp, nsc, mods, kubebuilder, kyverno, metacontroller, vt-cli, distribution, trivy-operator,...
CVE-2025-58185 vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver, kubernetes-dashboard-metrics-scraper, secrets-store-csi-driver-provider-gcp, sigstore-scaffolding, wave, kapp, nsc, mods, kubebuilder, kyverno, metacontroller, vt-cli,...
CVE-2025-58187 vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, secrets-store-csi-driver-provider-gcp, secrets-store-csi-driver, cluster-api-provider-vsphere, logstash-exporter, gops, pvc-autoresizer, chartmuseum, kube-metrics-adapter, vertical-pod-autoscaler, nuclei, xcover, go-bindata,...
CVE-2025-58186 vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver, kubernetes-dashboard-metrics-scraper, secrets-store-csi-driver-provider-gcp, sigstore-scaffolding, wave, kapp, nsc, mods, kubebuilder, kyverno, metacontroller, vt-cli,...
CVE-2025-58188 vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver, kubernetes-dashboard-metrics-scraper, secrets-store-csi-driver-provider-gcp, sigstore-scaffolding, wave, kapp, nsc, mods, kubebuilder, kyverno, metacontroller, vt-cli,...
CVE-2025-58189 vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver, kubernetes-dashboard-metrics-scraper, secrets-store-csi-driver-provider-gcp, sigstore-scaffolding, wave, kapp, nsc, mods, kubebuilder, kyverno, metacontroller, vt-cli,...
CVE-2025-61724 vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver, kubernetes-dashboard-metrics-scraper, secrets-store-csi-driver-provider-gcp, sigstore-scaffolding, wave, kapp, nsc, mods, kubebuilder, kyverno, metacontroller, vt-cli,...
GHSA-447V-2QG4-H8HC vulnerabilities
Vulnerabilities for packages: nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver, kubernetes-dashboard-metrics-scraper, secrets-store-csi-driver-provider-gcp, sigstore-scaffolding, wave, kapp, nsc, mods, kubebuilder, kyverno, metacontroller,...