4 matches found
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: sigstore-scaffolding, bom, kaf, pulumi-language-yaml, nginx-mainline, ip-masq-agent, gitness, skaffold, external-dns, dex, k3d, grpcurl, stakater-reloader, rqlite, slsa-verifier, kubevela, dynamic-localpv-provisioner, ko, envoy-ratelimit, kubeflow-katib,...
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: prometheus-adapter-fips, falcoctl-fips, nfs-subdir-external-provisioner-fips, memcached-exporter, oauth2-proxy, aactl, kaf, slsa-verifier, conftest, stakater-reloader, prometheus-stackdriver-exporter, bank-vaults-fips, kubewatch, prometheus-elasticsearch-exporter,...
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: sigstore-scaffolding, bom, kaf, pulumi-language-yaml, nginx-mainline, ip-masq-agent, gitness, skaffold, external-dns, dex, k3d, grpcurl, stakater-reloader, rqlite, slsa-verifier, kubevela, dynamic-localpv-provisioner, ko, envoy-ratelimit, kubeflow-katib,...
istio/envoy: crafted packet allows remote attacker to cause denial of service
A null pointer exception flaw was found in servicemesh-proxy. When running Telemetry v2 not on by default in version 1.4.x, an attacker could send a specially crafted packet to the ingress gateway or proxy sidecar, triggering a denial of service...