Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

57 matches found

Chainguard
Chainguardadded yesterday5 views

GHSA-RGH6-RFWX-V388 vulnerabilities

Vulnerabilities for packages: livekit-cli, docker-cli-buildx, chainctl, dagger, kube-mgmt, docker-compose-fips, cloudbeat-fips, docker, trivy-operator, zarf-fips, spegel-fips, cloudbeat, packer-fips, kubescape-server, spegel, buildkitd-fips, kube-mgmt-fips, kubescape, trivy, neuvector-scanner-fip...

5.8AI score
Exploits0
Chainguard
Chainguardadded yesterday3 views

GHSA-33VJ-92QQ-66HC vulnerabilities

Vulnerabilities for packages: livekit-cli, docker-cli-buildx, chainctl, dagger, kube-mgmt, docker-compose-fips, cloudbeat-fips, docker, trivy-operator, zarf-fips, spegel-fips, cloudbeat, packer-fips, kubescape-server, spegel, buildkitd-fips, kube-mgmt-fips, kubescape, trivy, neuvector-scanner-fip...

5.8AI score
Exploits0
Chainguard
Chainguardadded yesterday4 views

CVE-2026-53489 vulnerabilities

Vulnerabilities for packages: livekit-cli, docker-cli-buildx, chainctl, dagger, kube-mgmt, docker-compose-fips, cloudbeat-fips, docker, trivy-operator, zarf-fips, spegel-fips, cloudbeat, packer-fips, kubescape-server, spegel, buildkitd-fips, kube-mgmt-fips, kubescape, trivy, neuvector-scanner-fip...

5.8AI score
Exploits0
Chainguard
Chainguardadded yesterday6 views

CVE-2026-50195 vulnerabilities

Vulnerabilities for packages: livekit-cli, docker-cli-buildx, chainctl, dagger, kube-mgmt, docker-compose-fips, cloudbeat-fips, docker, trivy-operator, zarf-fips, spegel-fips, cloudbeat, packer-fips, kubescape-server, spegel, buildkitd-fips, kube-mgmt-fips, kubescape, trivy, neuvector-scanner-fip...

5.8AI score
Exploits0
Chainguard
Chainguardadded yesterday4 views

CVE-2026-53492 vulnerabilities

Vulnerabilities for packages: livekit-cli, docker-cli-buildx, chainctl, dagger, kube-mgmt, docker-compose-fips, cloudbeat-fips, docker, trivy-operator, zarf-fips, spegel-fips, cloudbeat, packer-fips, kubescape-server, spegel, buildkitd-fips, kube-mgmt-fips, kubescape, trivy, neuvector-scanner-fip...

5.8AI score
Exploits0
Chainguard
Chainguardadded yesterday3 views

GHSA-CVXM-645Q-P574 vulnerabilities

Vulnerabilities for packages: livekit-cli, docker-cli-buildx, chainctl, dagger, kube-mgmt, docker-compose-fips, cloudbeat-fips, docker, trivy-operator, zarf-fips, spegel-fips, cloudbeat, packer-fips, kubescape-server, spegel, buildkitd-fips, kube-mgmt-fips, kubescape, trivy, neuvector-scanner-fip...

5.8AI score
Exploits0
Chainguard
Chainguardadded yesterday3 views

GHSA-JPCC-P29G-P8MQ vulnerabilities

Vulnerabilities for packages: redpanda-operator, kubescape-operator-fips, spegel-fips, packer-fips, jfrog-cli, amazon-ecs-agent-fips, amazon-ecs-agent, google-osconfig-agent, spegel, datadog-agent-fips, kubescape, helm-fips, headlamp-fips, neuvector-scanner-fips, linkerd2-fips, zot,...

5.8AI score
Exploits0
Chainguard
Chainguardadded yesterday5 views

GHSA-XHF5-7WJV-PQXP vulnerabilities

Vulnerabilities for packages: redpanda-operator, kubescape-operator-fips, spegel-fips, packer-fips, jfrog-cli, amazon-ecs-agent-fips, amazon-ecs-agent, google-osconfig-agent, spegel, datadog-agent-fips, kubescape, helm-fips, headlamp-fips, neuvector-scanner-fips, linkerd2-fips, zot,...

5.8AI score
Exploits0
Chainguard
Chainguardadded yesterday5 views

CVE-2026-53488 vulnerabilities

Vulnerabilities for packages: redpanda-operator, kubescape-operator-fips, spegel-fips, packer-fips, jfrog-cli, amazon-ecs-agent-fips, amazon-ecs-agent, google-osconfig-agent, spegel, datadog-agent-fips, kubescape, helm-fips, headlamp-fips, neuvector-scanner-fips, linkerd2-fips, zot,...

5.8AI score
Exploits0
Wolfi
Wolfiadded 2026/05/20 7:48 p.m.12 views

GHSA-CRHJ-59GH-8X96 vulnerabilities

Vulnerabilities for packages: gitaly, nfpm, zarf, zot, scorecard, teleport, trivy, dagger, syft, gitsign, gitlab-runner, flux, crossplane, gptscript, grype, pulumi, pulumi-kubernetes-operator, cerbos, snyk-cli, argo-events, argo-cd, apko, argo-workflows, goreleaser, kargo, witness, skaffold, gite...

5.8AI score
Exploits0
Wolfi
Wolfiadded 2026/05/20 7:48 p.m.12 views

GHSA-M7CR-M3PV-HGRP vulnerabilities

Vulnerabilities for packages: gitaly, nfpm, zarf, zot, scorecard, teleport, trivy, dagger, syft, gitsign, gitlab-runner, flux, crossplane, gptscript, grype, pulumi, pulumi-kubernetes-operator, cerbos, snyk-cli, argo-events, argo-cd, apko, argo-workflows, goreleaser, kargo, witness, skaffold, gite...

5.8AI score
Exploits0
Wolfi
Wolfiadded 2026/05/20 7:48 p.m.14 views

CVE-2026-45571 vulnerabilities

Vulnerabilities for packages: gitaly, nfpm, zarf, zot, scorecard, teleport, trivy, dagger, syft, gitsign, gitlab-runner, flux, crossplane, gptscript, grype, pulumi, pulumi-kubernetes-operator, cerbos, snyk-cli, argo-events, argo-cd, apko, argo-workflows, goreleaser, kargo, witness, skaffold, gite...

5.4CVSS5.8AI score0.00297EPSS
Exploits0
Wolfi
Wolfiadded 2026/05/20 7:48 p.m.13 views

CVE-2026-45570 vulnerabilities

Vulnerabilities for packages: gitaly, nfpm, zarf, zot, scorecard, teleport, trivy, dagger, syft, gitsign, gitlab-runner, flux, crossplane, gptscript, grype, pulumi, pulumi-kubernetes-operator, cerbos, snyk-cli, argo-events, argo-cd, apko, argo-workflows, goreleaser, kargo, witness, skaffold, gite...

9.6CVSS5.8AI score0.00365EPSS
Exploits0
Chainguard
Chainguardadded 2026/05/20 7:17 p.m.8 views

CVE-2026-45570 vulnerabilities

Vulnerabilities for packages: cg, gitlab-runner, gitlab-runner-fips, nuclei, pulumi-language-yaml, pulumi-language-dotnet, packer-fips, jfrog-cli, trufflehog, mapotf, google-osconfig-agent, cerbos-fips, kubescape, bom, argo-workflows-fips, zot, coder, kubevela-fips, amazon-ssm-agent, flux,...

9.6CVSS5.8AI score0.00365EPSS
Exploits0
Chainguard
Chainguardadded 2026/05/20 7:17 p.m.6 views

GHSA-CRHJ-59GH-8X96 vulnerabilities

Vulnerabilities for packages: cg, gitlab-runner, gitlab-runner-fips, nuclei, pulumi-language-yaml, pulumi-language-dotnet, packer-fips, jfrog-cli, trufflehog, mapotf, google-osconfig-agent, cerbos-fips, kubescape, bom, argo-workflows-fips, zot, coder, kubevela-fips, amazon-ssm-agent, flux,...

5.8AI score
Exploits0
Chainguard
Chainguardadded 2026/05/20 7:17 p.m.5 views

GHSA-M7CR-M3PV-HGRP vulnerabilities

Vulnerabilities for packages: cg, gitlab-runner, gitlab-runner-fips, nuclei, pulumi-language-yaml, pulumi-language-dotnet, packer-fips, jfrog-cli, trufflehog, mapotf, google-osconfig-agent, cerbos-fips, kubescape, bom, argo-workflows-fips, zot, coder, kubevela-fips, amazon-ssm-agent, flux,...

5.8AI score
Exploits0
Chainguard
Chainguardadded 2026/05/20 7:17 p.m.13 views

CVE-2026-45571 vulnerabilities

Vulnerabilities for packages: cg, gitlab-runner, gitlab-runner-fips, nuclei, pulumi-language-yaml, pulumi-language-dotnet, packer-fips, jfrog-cli, trufflehog, mapotf, google-osconfig-agent, cerbos-fips, kubescape, bom, argo-workflows-fips, zot, coder, kubevela-fips, amazon-ssm-agent, flux,...

5.4CVSS5.8AI score0.00297EPSS
Exploits0
Chainguard
Chainguardadded 2026/05/06 7:17 p.m.26 views

CVE-2026-41506 vulnerabilities

Vulnerabilities for packages: cg, gitlab-runner, gitlab-runner-fips, nuclei, pulumi-language-yaml, pulumi-language-dotnet, commercial-chainloop-cli, packer-fips, jfrog-cli, trufflehog, mapotf, google-osconfig-agent, cerbos-fips, kubescape, bom, argo-workflows-fips, zot, kubevela-fips,...

7.4CVSS5.8AI score0.00259EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2026/03/25 12:26 a.m.2 views

SUSE CVE-2026-28406

kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster. Starting in version 1.25.4 and prior to version 1.25.10, kaniko unpacks build context archives using filepath.Joindest, cleanedName without enforcing that the final path stays within dest. A ta...

8.2CVSS6.3AI score0.00559EPSS
Exploits0References3
OSV
OSVadded 2026/03/10 6:28 p.m.4 views

GO-2026-4580 kaniko has tar archive path traversal in its build context extraction, allowing file writes outside destination directories in github.com/chainguard-dev/kaniko

kaniko has tar archive path traversal in its build context extraction, allowing file writes outside destination directories in github.com/chainguard-dev/kaniko...

8.2CVSS5.8AI score0.00559EPSS
Exploits0References5
Rows per page
Query Builder