Lucene search
K

7 matches found

GithubExploit
GithubExploit
added 2026/05/13 12:16 p.m.103 views

agentcore-poc

Blueprint POC - Workflow Generation & Deployment A Proof of C...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2025/09/20 2:20 p.m.5 views

CVE-2025-47906 vulnerabilities

Vulnerabilities for packages: lvm-driver, addon-resizer, ctop, vault-k8s, secrets-store-csi-driver-provider-aws, confluent-common-docker, kube-vip-cloud-provider, sftpgo-plugin-pubsub, vexctl, gitlab-runner, pvc-autoresizer, newrelic-fluent-bit-output, octo-sts, git-lfs, kserve-rest-proxy,...

6.5CVSS6.5AI score0.00489EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2024/05/21 11:13 p.m.6 views

SUSE CVE-2024-35192

Trivy is a security scanner. Prior to 0.51.2, if a malicious actor is able to trigger Trivy to scan container images from a crafted malicious registry, it could result in the leakage of credentials for legitimate registries such as AWS Elastic Container Registry ECR, Google Cloud Artifact/Contain...

5.5CVSS6.7AI score0.0019EPSS
Exploits0References5
OSV
OSV
added 2024/05/20 8:36 p.m.20 views

CVE-2024-35192 Trivy possibly leaks registry credential when scanning images from malicious registries

Trivy is a security scanner. Prior to 0.51.2, if a malicious actor is able to trigger Trivy to scan container images from a crafted malicious registry, it could result in the leakage of credentials for legitimate registries such as AWS Elastic Container Registry ECR, Google Cloud Artifact/Contain...

5.5CVSS5.2AI score0.0019EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:25 p.m.4 views

Malicious code in amazon-ecr-data-replication-hub-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a32deab8300fe35db0ea930f79cccefb774d8da37e8bb3cd231a3658cd492189 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2021/02/03 4:15 p.m.4 views

CVE-2021-25776

In JetBrains TeamCity before 2020.2, an ECR token could be exposed in a build's parameters...

7.5CVSS7.1AI score0.01069EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/02/03 12:0 a.m.5 views

JetBrains TeamCity 安全漏洞

TeamCity is a Java-based build management and continuous integration server from JetBrains. An information disclosure vulnerability exists in JetBrains TeamCity versions prior to 2020.2. An attacker can exploit the vulnerability to obtain an ECR token from a build parameter...

7.5CVSS7.1AI score0.01069EPSS
Exploits0References2
Rows per page
Query Builder