CVE-2026-50195 vulnerabilities

Vulnerabilities for packages: kaniko, trivy, docker-fips, cloudbeat-fips, grype-db, neuvector-scanner-fips, chainctl, spegel-fips, grype, docker-cli-buildx, neuvector-scanner, k9s, livekit-cli, zarf-fips, grype-fips, cloudbeat, manifest-tool, kube-mgmt, kubescape-server, packer-fips, syft,...

GHSA-CVXM-645Q-P574 vulnerabilities

Vulnerabilities for packages: kaniko, trivy, docker-fips, cloudbeat-fips, grype-db, neuvector-scanner-fips, chainctl, spegel-fips, grype, docker-cli-buildx, neuvector-scanner, k9s, livekit-cli, zarf-fips, grype-fips, cloudbeat, manifest-tool, kube-mgmt, kubescape-server, packer-fips, syft,...

GHSA-33VJ-92QQ-66HC vulnerabilities

Vulnerabilities for packages: kaniko, trivy, docker-fips, cloudbeat-fips, grype-db, neuvector-scanner-fips, chainctl, spegel-fips, grype, docker-cli-buildx, neuvector-scanner, k9s, livekit-cli, zarf-fips, grype-fips, cloudbeat, manifest-tool, kube-mgmt, kubescape-server, packer-fips, syft,...

CVE-2026-53492 vulnerabilities

Vulnerabilities for packages: kaniko, trivy, docker-fips, cloudbeat-fips, grype-db, neuvector-scanner-fips, chainctl, spegel-fips, grype, docker-cli-buildx, neuvector-scanner, k9s, livekit-cli, zarf-fips, grype-fips, cloudbeat, manifest-tool, kube-mgmt, kubescape-server, packer-fips, syft,...

CVE-2026-53489 vulnerabilities

Vulnerabilities for packages: kaniko, trivy, docker-fips, cloudbeat-fips, grype-db, neuvector-scanner-fips, chainctl, spegel-fips, grype, docker-cli-buildx, neuvector-scanner, k9s, livekit-cli, zarf-fips, grype-fips, cloudbeat, manifest-tool, kube-mgmt, kubescape-server, packer-fips, syft,...

GHSA-XHF5-7WJV-PQXP vulnerabilities

Vulnerabilities for packages: trivy, kgateway, newrelic-infrastructure-agent, helm-operator-fips, spegel-fips, grype, chaos-mesh-fips, k9s, grype-fips, skaffold-fips, helm-operator, kube-arangodb, scorecard, kots, trivy-fips, newrelic-infrastructure-agent-fips, docker-compose-fips,...

GHSA-JPCC-P29G-P8MQ vulnerabilities

Vulnerabilities for packages: trivy, kgateway, newrelic-infrastructure-agent, helm-operator-fips, spegel-fips, grype, chaos-mesh-fips, k9s, grype-fips, skaffold-fips, helm-operator, kube-arangodb, scorecard, kots, trivy-fips, newrelic-infrastructure-agent-fips, docker-compose-fips,...

cybersec-bad-folio

DevFolio Application portfolio étudiant — Spring Boot 3.2 + V...

CVE-2026-39827 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-39827 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-25680 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-25680 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-25681 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-25681 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-46598 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-46598 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-39835 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-39835 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-39833 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-39833 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-42502 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-42502 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

zero2shell-50

ZeroToShell-50 🚀 A highly curated, containerized training g...

zoneminder-rce-poc

just wait and see Proof of concept for an OS command injectio...

CVE-2026-42869

SOCFortress CoPilot focuses on providing a single pane of glass for all your security operations needs. Prior to 0.1.57, SOCFortress CoPilot ships a hardcoded JWT signing secret as a fallback value in backend/app/auth/utils.py:28 and ships it verbatim in .env.example. Any deployment where JWTSECR...

Security Bulletin: IBM Verify Antenna is affected by multiple vulnerabilities (CVE-2026-33815, CVE-2026-33816, CVE-2026-41889)

Summary IBM Verify Antenna has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2026-41889 DESCRIPTION: pgx is a PostgreSQL driver and toolkit for Go. Prior to version 5.9.2, SQL injection can occur when the non-default simple protocol is used, a dollar quoted string...

CVE-2026-47179

Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.4, ProjectService.GetProjectFileContent returns the contents of any Docker Compose include directive declared in a project's compose file before any path-traversal validation runs. Because...