146 matches found
CVE-2023-26248 vulnerabilities
Vulnerabilities for packages: k3s...
GHSA-MQR9-HJR8-2M9W vulnerabilities
Vulnerabilities for packages: k3s...
CVE-2023-26248 vulnerabilities
Vulnerabilities for packages: k3s, rke2-runtime, rke2-runtime-fips...
GHSA-MQR9-HJR8-2M9W vulnerabilities
Vulnerabilities for packages: k3s, rke2-runtime, rke2-runtime-fips...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: argo-workflows-fips, fscrypt, external-dns, flux-source-controller, loki, flux-image-automation-controller, kots, frankenphp-8.2, terraform, prometheus-fips, gitlab-kas, tekton-pipelines-fips, reports-server, prometheus-elasticsearch-exporter, seaweedfs-rocksdb-fips,...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: cloud-provider-aws, knative-serving, aactl, kubernetes, flux-image-automation-controller, gitea, kots, minio, zarf, kyverno, argo-cd, zot, kubescape, istio, kubernetes-dashboard, telegraf, fscrypt, gitlab-kas, external-dns, snyk-cli, containerd,...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: aactl, rancher-machine, telegraf, step-issuer, fscrypt, external-dns, containerd, gptscript, cluster-api-azure-controller, cilium-cli, kaf, cosign, trivy, k3s, ko, teleport, tflint, gomplate, loki, melange, crossplane-provider-azure-authorization, dagger, gitea,...
GHSA-78MQ-XCR3-XM33 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws, dagger, aactl, knative-serving, kubernetes, flux-image-automation-controller, gitea, kots, minio, scorecard, terragrunt, wolfictl, kyverno, zarf, argo-cd, zot, opentofu, kubescape, pulumi-language-yaml, istio, kubernetes-dashboard, telegraf, apko,...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws, knative-serving, aactl, kubernetes, flux-image-automation-controller, gitea, kots, minio, zarf, kyverno, argo-cd, zot, docker-machine-driver-harvester, kubescape, istio, kubernetes-dashboard, telegraf, fscrypt, gitlab-kas, external-dns, snyk-cli,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: cloud-provider-aws, knative-serving, aactl, kubernetes, kots, minio, kyverno, argo-cd, zot, istio, kubernetes-dashboard, telegraf, buildah, fscrypt, gitlab-kas, external-dns, snyk-cli, containerd, opentelemetry-collector, prometheus-operator, vitess, cert-manager,...
CVE-2026-54250
K3s is a fully conformant production-ready Kubernetes distribution. Prior to 1.35.3+k3s1, 1.34.6+k3s1, v1.33.10+k3s1, a path traversal vulnerability exists in K3s's etcd snapshot decompression functionality. Zip files containing archive members with maliciously crafted names can be written to...
CVE-2026-54250
K3s is a fully conformant production-ready Kubernetes distribution. Prior to 1.35.3+k3s1, 1.34.6+k3s1, v1.33.10+k3s1, a path traversal vulnerability exists in K3s's etcd snapshot decompression functionality. Zip files containing archive members with maliciously crafted names can be written to...
CVE-2026-40898 vulnerabilities
Vulnerabilities for packages: kyverno-policy-reporter-ui, kargo, spegel, jitsucom-bulker, kubernetes-dns-node-cache, traefik, kubo, k8sgateway, coredns, ipfs-cluster, opentelemetry-operator, kyverno-policy-reporter, k3s, kube-metrics-adapter, prometheus-blackbox-exporter, q, teleport, frp, dkron...
CVE-2026-42508 vulnerabilities
Vulnerabilities for packages: istio, guac, telegraf, argocd-image-updater, gitsign, terragrunt, k3s, vitess, containerd, argo-events, mattermost, argo-cd, prometheus...
CVE-2026-42508 vulnerabilities
Vulnerabilities for packages: kyverno-fips, traefik-fips, guac, apply-cve-bump, argo-cd-fips, loki, harbor-fips, gitlab-rails-ce, knative-kafka-broker-fips, backup-restore-operator, terragrunt, containerd, flux, istio, traefik, mattermost, omnictl-multiarch, zitadel, k3s, vitess, nemo, prometheus...
CVE-2026-39825 vulnerabilities
Vulnerabilities for packages: knative-serving, aactl, kubernetes, grafana-alloy, k8s-device-plugin, kots, minio, zarf, kyverno, kube-fluentd-operator, argo-cd, zot, gatekeeper, aws-flb-firehose, knative-eventing, istio, kubernetes-dashboard, telegraf, redka, falco-no-driver, external-dns,...
CVE-2026-39825 vulnerabilities
Vulnerabilities for packages: argo-workflows-fips, external-dns, seaweedfs-fips, loki, apm-server-fips, external-dns-fips, kots, longhorn-backing-image-manager-fips, longhorn-manager-fips, knative-net-istio, runc, logstash, datadog-agent-fips, libnvidia-container-fips, consul-fips, terraform,...
CVE-2026-42499 vulnerabilities
Vulnerabilities for packages: external-dns, mailpit-fips, crossplane-provider-aws-kinesis-fips, kots, google-cloud-otel-ops-collector, kubernetes-csi-external-attacher-fips, jaeger, crossplane-provider-aws-guardduty, atlantis, kpt, chainloop-control-plane, prometheus-adapter-fips,...
CVE-2026-39820 vulnerabilities
Vulnerabilities for packages: external-dns, mailpit-fips, crossplane-provider-aws-kinesis-fips, kots, google-cloud-otel-ops-collector, kubernetes-csi-external-attacher-fips, jaeger, crossplane-provider-aws-guardduty, atlantis, kpt, chainloop-control-plane, prometheus-adapter-fips,...
GHSA-P9H5-JM8X-MJM5 vulnerabilities
Vulnerabilities for packages: external-dns, mailpit-fips, crossplane-provider-aws-kinesis-fips, kots, google-cloud-otel-ops-collector, kubernetes-csi-external-attacher-fips, jaeger, crossplane-provider-aws-guardduty, atlantis, kpt, chainloop-control-plane, prometheus-adapter-fips,...