Lucene search
K

26 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.2 views

MiracleLinux 8 : grafana-9.2.10-21.el8_10 (AXSA:2025-9576:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9576:01 advisory. go-git: argument injection via the URL field CVE-2025-21613 go-git: go-git clients vulnerable to DoS via maliciously crafted Git server replies...

9.8CVSS7.7AI score0.0124EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 3: grafana (TSSA-2025:0100)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0100 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS7.8AI score0.0124EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.11 views

Alibaba Cloud Linux 3 : 0013: grafana (ALINUX3-SA-2025:0013)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0013 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-21613: go-git is a highly...

9.8CVSS7.8AI score0.0124EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2025/04/09 9:13 p.m.7 views

CVE-2025-21614 affecting package cri-o for versions less than 1.22.3-13

CVE-2025-21614 affecting package cri-o for versions less than 1.22.3-13. A patched version of the package is available...

7.5CVSS7AI score0.00696EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2025-21614

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - go-git is a highly extensible git implementation library written in pure Go. A denial of service DoS vulnerability was discovered in go-git versions prior to...

7.5CVSS6.7AI score0.00696EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/27 5:20 p.m.19 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a denial of service in go-git [CVE-2025-21614]

Summary IBM Watson Speech Services Cartridge is vulnerable to a denial of service in go-git, due to a weakness in Git server allowing crafted responses which may cause resource exhaustion CVE-2025-21614. Go-Git is used in our watson-speech-catalog images. This vulnerabilitiy has been addressed...

7.5CVSS6.4AI score0.00696EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2025/02/26 7:14 p.m.13 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.1 security update

An update is now available for Red Hat OpenShift GitOps v1.15.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7AI score0.0124EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.14 views

Azure Linux 3.0 Security Update: packer (CVE-2025-21614)

The version of packer installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21614 advisory. - go-git is a highly extensible git implementation library written in pure Go. A denial of service DoS...

7.5CVSS7.1AI score0.00696EPSS
Exploits0References2
Amazon
Amazon
added 2025/02/05 12:0 a.m.4 views

Important: amazon-ssm-agent

Issue Overview: go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags...

9.8CVSS9.4AI score0.0124EPSS
Exploits0
Amazon
Amazon
added 2025/02/04 12:0 a.m.4 views

Important: amazon-ssm-agent

Issue Overview: go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags...

9.8CVSS7.4AI score0.0124EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/01/23 9:34 a.m.20 views

Important: Red Hat Security Advisory: grafana security update

An update for grafana is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS7AI score0.0124EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/01/23 12:0 a.m.22 views

RHEL 9 : grafana (RHSA-2025:0662)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:0662 advisory. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: go-git: argume...

9.8CVSS7.8AI score0.0124EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/01/20 1:40 a.m.20 views

Important: Red Hat Security Advisory: grafana security update

An update for grafana is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.8CVSS7AI score0.0124EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2025/01/20 12:0 a.m.24 views

Important: grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: go-git: argument injection via the URL field CVE-2025-21613 go-git: go-git clients vulnerable to DoS via maliciously crafted Git server replies CVE-2025-21614 For more...

9.8CVSS7.3AI score0.0124EPSS
Exploits0References6
Oracle linux
Oracle linux
added 2025/01/19 12:0 a.m.42 views

grafana security update

9.2.10-21 - Resolves RHEL-72881: CVE-2025-21614 - Resolves RHEL-72869: CVE-2025-21613...

9.2CVSS7.3AI score0.0124EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/01/16 3:28 a.m.8 views

CVE-2025-21614 affecting package packer for versions less than 1.9.5-5

CVE-2025-21614 affecting package packer for versions less than 1.9.5-5. A patched version of the package is available...

7.5CVSS7.7AI score0.00696EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/01/16 12:0 a.m.9 views

CBL Mariner 2.0 Security Update: packer (CVE-2025-21614)

The version of packer installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21614 advisory. - go-git is a highly extensible git implementation library written in pure Go. A denial of service DoS...

7.5CVSS7.2AI score0.00696EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2025/01/13 12:0 a.m.5 views

operator-sdk-1.39.0-1.1 on GA media (moderate)

operator-sdk-1.39.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:14634-1 Rating: moderate Cross-References: CVE-2024-45338 CVE-2025-21614 CVSS scores: CVE-2024-45338 SUSE : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2024-45338 SUSE : 8.2...

8.2CVSS7.5AI score0.00856EPSS
Exploits0
NVD
NVD
added 2025/01/06 5:15 p.m.32 views

CVE-2025-21614

go-git is a highly extensible git implementation library written in pure Go. A denial of service DoS vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git serve...

7.5CVSS0.00696EPSS
Exploits0References1
Wolfi
Wolfi
added 2025/01/06 5:15 p.m.14 views

CVE-2025-21614 vulnerabilities

Vulnerabilities for packages: timoni, argo-workflows, flux-kustomize-controller, grafana-alloy, crossplane, go-licenses, pulumi-language-dotnet, wolfictl, kubescape, argo-events, apko, pulumi-language-java, syft, argocd-image-updater, kots, grype, goreleaser, pulumi-kubernetes-operator,...

7.5CVSS7.1AI score0.00696EPSS
Exploits0
Rows per page
Query Builder