Lucene search
K

311 matches found

Chainguard
Chainguard
added 2026/04/11 2:18 a.m.14 views

CVE-2026-32283 vulnerabilities

Vulnerabilities for packages: helm-fips, chisel-fips, tofu-controller-fips, extism, cilium-certgen-fips, aws-ebs-csi-driver-fips, docker-machine-driver-linode, kbld, knative-eventing-fips, ko-fips, prometheus-redis-exporter, aws-efs-csi-driver, grafana-pyroscope,...

7.5CVSS6.9AI score0.00621EPSS
Exploits0
Chainguard
Chainguard
added 2026/03/31 7:55 a.m.7 views

GHSA-GM2X-2G9H-CCM8 vulnerabilities

Vulnerabilities for packages: grype-db, kubescape-server-fips, teleport, trivy-fips, steampipe, gomplate, grafana, nemo, kubescape-server, osv-scanner, gitaly-fips, argo-workflows, external-secrets-operator, syft-fips, gitlab-rails-ce, cerbos-fips, argocd-image-updater-fips, syft, chainctl,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/03/31 7:55 a.m.30 views

CVE-2026-33762 vulnerabilities

Vulnerabilities for packages: grype-db, kubescape-server-fips, teleport, trivy-fips, steampipe, gomplate, grafana, nemo, kubescape-server, osv-scanner, gitaly-fips, argo-workflows, external-secrets-operator, syft-fips, gitlab-rails-ce, cerbos-fips, argocd-image-updater-fips, syft, chainctl,...

2.8CVSS6.1AI score0.00153EPSS
Exploits0
Chainguard
Chainguard
added 2026/03/31 7:55 a.m.9 views

CVE-2026-34165 vulnerabilities

Vulnerabilities for packages: grype-db, kubescape-server-fips, teleport, trivy-fips, steampipe, gomplate, grafana, nemo, kubescape-server, osv-scanner, gitaly-fips, argo-workflows, external-secrets-operator, syft-fips, gitlab-rails-ce, cerbos-fips, argocd-image-updater-fips, syft, chainctl,...

5CVSS6.1AI score0.00147EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 9:21 a.m.10 views

CVE-2021-41834

JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable to Broken Access Control, the copy functionality can be used by a low-privileged user to read and copy any artifact that exists in the Artifactory deployment due to improper permissions validation...

6.5CVSS6.7AI score0.00531EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:12 a.m.9 views

CVE-2022-0668

JFrog Artifactory prior to 7.37.13 is vulnerable to Authentication Bypass, which can lead to Privilege Escalation when a specially crafted request is sent by an unauthenticated user...

9.8CVSS7AI score0.00632EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:41 a.m.19 views

CVE-2022-0573

JFrog Artifactory before 7.36.1 and 6.23.41, is vulnerable to Insecure Deserialization of untrusted data which can lead to DoS, Privilege Escalation and Remote Code Execution when a specially crafted request is sent by a low privileged authenticated user due to insufficient validation of a...

8.8CVSS7.3AI score0.01937EPSS
Exploits0References1
CVE
CVE
added 2026/01/04 9:17 a.m.18 views

CVE-2025-14830

CVE-2025-14830 affects JFrog Artifactory (Workers) versions 7.94.0 through 7.117.9 (and 7.117.10 as the fixed point referenced) due to improper neutralization of input during web page generation, resulting in Cross-Site Scripting (XSS). Root cause: inadequate input handling in the web page genera...

4.9CVSS5.5AI score0.00236EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/04 12:0 a.m.9 views

JFrog Artifactory Workers 跨站脚本漏洞

JFrog Artifactory Workers is an extension service from JFrog USA. A cross-site scripting vulnerability exists in JFrog Artifactory Workers versions 7.94.0 through prior to 7.117.10, which stems from improper input neutralization during web page generation and could lead to cross-site scripting...

4.9CVSS6AI score0.00236EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/04 12:0 a.m.9 views

PT-2026-1151

Name of the Vulnerable Software and Affected Versions JFrog Artifactory Workers versions 7.94.0 through 7.117.9 Description An issue exists in JFrog Artifactory Workers that allows for Cross-Site Scripting XSS. This is due to improper neutralization of input during web page generation. The issue...

4.9CVSS6AI score0.00236EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/29 10:46 p.m.3 views

EUVD-2025-36828

Malicious code in jfrog-npm-actions-example npm...

6.6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/29 10:46 p.m.7 views

Malicious code in jfrog-npm-actions-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a600f48287c23fcb6db85ed0ed084de6ce12d7d3fab99e327ec306c6a84ea7f0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References4
Snyk
Snyk
added 2025/10/29 10:46 p.m.1 views

Malicious Package

Overview jfrog-npm-actions-example is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2025/10/29 10:46 p.m.3 views

MAL-2025-49014 Malicious code in jfrog-npm-actions-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a600f48287c23fcb6db85ed0ed084de6ce12d7d3fab99e327ec306c6a84ea7f0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-27097

Malware in sbrugna...

8.8CVSS8.5AI score0.00997EPSS
Exploits3References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-7423

Malware in sbrugna...

9.8CVSS9.5AI score0.03849EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-10274

Malware in sbrugna...

8.8CVSS8.6AI score0.00341EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-9525

Malware in sbrugna...

7.2CVSS7AI score0.01495EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-1879

Malware in sbrugna...

8.8CVSS8.8AI score0.00756EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-11638

Malware in sbrugna...

9.8CVSS9.5AI score0.03029EPSS
Exploits2References7
Rows per page
Query Builder