Lucene search
K

172 matches found

Wolfi
Wolfi
added 2026/05/20 7:48 p.m.16 views

GHSA-CRHJ-59GH-8X96 vulnerabilities

Vulnerabilities for packages: pulumi-language-yaml, argocd-image-updater, guac, gitlab-runner, snyk-cli, gptscript, apko, goreleaser, gitaly, melange, steampipe, trufflehog, pulumi-language-dotnet, external-secrets-operator, kots, syft, bom, gitea, nfpm, nuclei, k9s, kubescape, grype, argo-cd,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/05/20 7:48 p.m.17 views

GHSA-M7CR-M3PV-HGRP vulnerabilities

Vulnerabilities for packages: pulumi-language-yaml, argocd-image-updater, guac, gitlab-runner, snyk-cli, gptscript, apko, goreleaser, gitaly, melange, steampipe, trufflehog, pulumi-language-dotnet, external-secrets-operator, kots, syft, bom, gitea, nfpm, nuclei, k9s, kubescape, grype, argo-cd,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/05/20 7:48 p.m.20 views

CVE-2026-45571 vulnerabilities

Vulnerabilities for packages: pulumi-language-yaml, argocd-image-updater, guac, gitlab-runner, snyk-cli, gptscript, apko, goreleaser, gitaly, melange, steampipe, trufflehog, pulumi-language-dotnet, external-secrets-operator, kots, syft, bom, gitea, nfpm, nuclei, k9s, kubescape, grype, argo-cd,...

5.4CVSS6.1AI score0.00297EPSS
Exploits0
Wolfi
Wolfi
added 2026/05/20 7:48 p.m.19 views

CVE-2026-45570 vulnerabilities

Vulnerabilities for packages: pulumi-language-yaml, argocd-image-updater, guac, gitlab-runner, snyk-cli, gptscript, apko, goreleaser, gitaly, melange, steampipe, trufflehog, pulumi-language-dotnet, external-secrets-operator, kots, syft, bom, gitea, nfpm, nuclei, k9s, kubescape, grype, argo-cd,...

9.6CVSS6.1AI score0.00365EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/20 7:17 p.m.15 views

CVE-2026-45571 vulnerabilities

Vulnerabilities for packages: grype-db, kubescape-server-fips, teleport, trivy-fips, steampipe, gomplate, nemo, kubescape-server, osv-scanner, gitaly-fips, argo-workflows, mapotf-fips, external-secrets-operator, syft-fips, gitlab-rails-ce, cerbos-fips, argocd-image-updater-fips, syft, chainctl,...

5.4CVSS6.1AI score0.00297EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/20 7:17 p.m.9 views

GHSA-CRHJ-59GH-8X96 vulnerabilities

Vulnerabilities for packages: grype-db, kubescape-server-fips, teleport, trivy-fips, steampipe, gomplate, nemo, kubescape-server, osv-scanner, gitaly-fips, argo-workflows, mapotf-fips, external-secrets-operator, syft-fips, gitlab-rails-ce, cerbos-fips, argocd-image-updater-fips, syft, chainctl,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/05/20 7:17 p.m.8 views

GHSA-M7CR-M3PV-HGRP vulnerabilities

Vulnerabilities for packages: grype-db, kubescape-server-fips, teleport, trivy-fips, steampipe, gomplate, nemo, kubescape-server, osv-scanner, gitaly-fips, argo-workflows, mapotf-fips, external-secrets-operator, syft-fips, gitlab-rails-ce, cerbos-fips, argocd-image-updater-fips, syft, chainctl,...

6.1AI score
Exploits0
OSV
OSV
added 2026/05/18 1:45 p.m.10 views

CLEANSTART-2026-MI47415 Security fixes for CVE-2025-61729, CVE-2026-32952, ghsa-mh2q-q3fh-2475, ghsa-pjcq-xvwq-hhpj applied in versions: 1.1.0-r0, 2.4.1-r0

Multiple security vulnerabilities affect the external-secrets package. These issues are resolved in later releases. See references for individual vulnerability details...

7.5CVSS7.2AI score0.01027EPSS
Exploits2References7
Chainguard
Chainguard
added 2026/05/12 7:19 a.m.35 views

CVE-2026-45022 vulnerabilities

Vulnerabilities for packages: grype-db, kubescape-server-fips, teleport, trivy-fips, steampipe, gomplate, grafana, nemo, kubescape-server, osv-scanner, gitaly-fips, argo-workflows, mapotf-fips, external-secrets-operator, syft-fips, gitlab-rails-ce, cerbos-fips, argocd-image-updater-fips, syft,...

7.5CVSS6.1AI score0.00159EPSS
Exploits0
NVD
NVD
added 2026/05/11 8:25 p.m.10 views

CVE-2026-42875

External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. Prior to 2.4.0, Namespaced SecretStore resources that used CAProvider with type ConfigMap could resolve CA material from another namespace when caProvider.namespace w...

5.3CVSS0.0024EPSS
Exploits0References1
NVD
NVD
added 2026/05/11 8:25 p.m.24 views

CVE-2026-42876

External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. Prior to 2.4.1, a user who only has permission to create ExternalSecret resources can cause the operator to create a Secret that Kubernetes will automatically populat...

4.9CVSS0.00214EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/11 6:58 p.m.47 views

CVE-2026-42876 External Secrets Operator: Priviledge escalation with secret overwriting

External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. Prior to 2.4.1, a user who only has permission to create ExternalSecret resources can cause the operator to create a Secret that Kubernetes will automatically populat...

4.9CVSS0.00214EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/11 6:58 p.m.11 views

CVE-2026-42876 External Secrets Operator: Priviledge escalation with secret overwriting

External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. Prior to 2.4.1, a user who only has permission to create ExternalSecret resources can cause the operator to create a Secret that Kubernetes will automatically populat...

4.9CVSS5.8AI score0.00214EPSS
Exploits0References3
CVE
CVE
added 2026/05/11 6:58 p.m.19 views

CVE-2026-42876

External Secrets Operator (ESO) vulnerability where a user with permission to create ExternalSecret resources can trigger creation of a Secret populated with a long‑lived token for a service account, enabling impersonation of that service account in the namespace. This privilege escalation is pos...

4.9CVSS5.8AI score0.00214EPSS
Exploits0References3
OSV
OSV
added 2026/05/11 6:58 p.m.4 views

CVE-2026-42876 External Secrets Operator: Priviledge escalation with secret overwriting

External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. Prior to 2.4.1, a user who only has permission to create ExternalSecret resources can cause the operator to create a Secret that Kubernetes will automatically populat...

4.9CVSS6AI score0.00214EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/11 6:56 p.m.41 views

CVE-2026-42875 External Secrets Operator: Namespace Isolation Bypass in CAProvider ConfigMap Resolution for SecretStore

External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. Prior to 2.4.0, Namespaced SecretStore resources that used CAProvider with type ConfigMap could resolve CA material from another namespace when caProvider.namespace w...

5.3CVSS0.0024EPSS
Exploits0References1
CVE
CVE
added 2026/05/11 6:56 p.m.16 views

CVE-2026-42875

External Secrets Operator contains a namespace isolation bypass in CAProvider ConfigMap resolution for SecretStore. Before v2.4.0, Namespaced SecretStore resources using CAProvider with type ConfigMap could resolve CA material from another namespace when caProvider.namespace was set, bypassing th...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References1
OSV
OSV
added 2026/05/11 6:56 p.m.3 views

CVE-2026-42875 External Secrets Operator: Namespace Isolation Bypass in CAProvider ConfigMap Resolution for SecretStore

External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. Prior to 2.4.0, Namespaced SecretStore resources that used CAProvider with type ConfigMap could resolve CA material from another namespace when caProvider.namespace w...

5.3CVSS6AI score0.0024EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

External Secrets 授权问题漏洞

External Secrets is an open-source Kubernetes-related application developed by External Secrets. Versions of the External Secrets Operator prior to 2.4.1 had an authorization issue vulnerability. This vulnerability stemmed from the ability for users to create ExternalSecret resources, allowing...

4.9CVSS5.8AI score0.00214EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

External Secrets 授权问题漏洞

External Secrets is an open-source Kubernetes-related application developed by External Secrets. Versions of External Secrets prior to 2.4.0 had an authorization issue vulnerability. This vulnerability stemmed from the use of CAProvider for the SecretStore resource, allowing it to resolve CA...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References1
Rows per page
Query Builder