42 matches found
GHSA-WCW9-47FP-RRFR vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
GHSA-HJX7-FPXX-MJ48 vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
GHSA-FRHW-MQJ2-WXW2 vulnerabilities
Vulnerabilities for packages: stern, glow, kube-vip-cloud-provider, timescaledb-tune, secrets-store-csi-driver-provider-gcp, xcover, portieris, smokescreen, docker-credential-ecr-login, kubernetes-csi-driver-nfs, prometheus-blackbox-exporter, smarter-device-manager, kaf, terraform-provider-time,...
GHSA-CXQ7-XW9V-RCV3 vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
GHSA-7WWX-XJ66-R44X vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
GHSA-9GCR-GP5F-JW27 vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
CVE-2025-61724 vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
GHSA-RJCG-56PH-3QVG vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
CVE-2025-58186 vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
CVE-2025-58185 vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
CVE-2025-58183 vulnerabilities
Vulnerabilities for packages: tofu-controller, stern, nerdctl, cloud-provider-gcp-cloud-controller-manager, terraform, vt-cli, glow, cluster-api-helm-controller, direnv, conftest, kubebuilder, openbao-k8s, falcosidekick, kube-vip-cloud-provider, ghaudit, timescaledb-tune, incert, dagdotdev,...
CVE-2025-58188 vulnerabilities
Vulnerabilities for packages: kpt, cilium, xeol-fips, nvidia-nsight-compute-12.9, prometheus-elasticsearch-exporter, blob-csi, configmap-reload-fips, runc, kubernetes-dashboard-auth-fips, velero-plugin-for-csi-fips, restic, kube-bench, gostatsd, sriov-network-device-plugin, vexctl, conftest-fips,...
CVE-2025-58189 vulnerabilities
Vulnerabilities for packages: kpt, cilium, xeol-fips, nvidia-nsight-compute-12.9, prometheus-elasticsearch-exporter, blob-csi, configmap-reload-fips, runc, kubernetes-dashboard-auth-fips, velero-plugin-for-csi-fips, restic, kube-bench, gostatsd, sriov-network-device-plugin, vexctl, conftest-fips,...
CVE-2025-61724 vulnerabilities
Vulnerabilities for packages: kpt, cilium, xeol-fips, nvidia-nsight-compute-12.9, prometheus-elasticsearch-exporter, blob-csi, configmap-reload-fips, runc, kubernetes-dashboard-auth-fips, velero-plugin-for-csi-fips, restic, kube-bench, gostatsd, sriov-network-device-plugin, vexctl, conftest-fips,...
GHSA-CXQ7-XW9V-RCV3 vulnerabilities
Vulnerabilities for packages: kpt, cilium, xeol-fips, nvidia-nsight-compute-12.9, prometheus-elasticsearch-exporter, blob-csi, configmap-reload-fips, runc, kubernetes-dashboard-auth-fips, velero-plugin-for-csi-fips, restic, kube-bench, gostatsd, sriov-network-device-plugin, vexctl, conftest-fips,...
GHSA-9GCR-GP5F-JW27 vulnerabilities
Vulnerabilities for packages: kpt, cilium, xeol-fips, nvidia-nsight-compute-12.9, prometheus-elasticsearch-exporter, blob-csi, configmap-reload-fips, runc, kubernetes-dashboard-auth-fips, velero-plugin-for-csi-fips, restic, kube-bench, gostatsd, sriov-network-device-plugin, vexctl, conftest-fips,...
Malicious code in azure-ipam-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 44b5c0e4141f25b2fb25c0fcd206aa203961a4a13336461bab2825b51576f88d The OpenSSF Package Analysis project identified 'azure-ipam-ui' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-42127 Malicious code in azure-ipam-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 44b5c0e4141f25b2fb25c0fcd206aa203961a4a13336461bab2825b51576f88d The OpenSSF Package Analysis project identified 'azure-ipam-ui' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: kpt, sqlexporter-fips, sbomqs, cilium, secrets-store-csi-driver-provider-azure, nvidia-nsight-compute-12.9, prometheus-elasticsearch-exporter, xeol-fips, esbuild-fips, blob-csi, metallb-fips, runc, cerbos, tempo-fips, velero-plugin-for-csi-fips, gatus,...
CVE-2024-21638
Azure IPAM IP Address Management is a lightweight solution developed on top of the Azure platform designed to help Azure customers manage their IP Address space easily and effectively. By design there is no write access to customers' Azure environments as the Service Principal used is only assign...