Lucene search
+L

4 matches found

snyk
snyk
added 2026/03/16 8:47 p.m.2 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via httprequester.go and httpdownloader.go‎. An attacker can access internal network resources and exfiltrate sensitive data by crafting malicious promotion templates or Promotion resources that trigger...

5.1CVSS5.8AI score0.00328EPSS
Exploits0References2
wolfi
wolfi
added 2025/12/17 1:48 p.m.6 views

GHSA-CFPF-HRX2-8RV6 vulnerabilities

Vulnerabilities for packages: tempo, k8sgpt, nats, splunk-otel-collector, kargo, kubeflow-pipelines, amazon-cloudwatch-agent, datadog-agent, verticadb-operator, kine, opentelemetry-collector, argo-cd, grafana-alloy, keda, aws-otel-collector, k3s, kserve, argo-workflows, vale,...

6.1AI score
Exploits0
wolfi
wolfi
added 2025/12/17 1:48 p.m.5 views

CVE-2025-68156 vulnerabilities

Vulnerabilities for packages: tempo, k8sgpt, nats, splunk-otel-collector, kargo, kubeflow-pipelines, amazon-cloudwatch-agent, datadog-agent, verticadb-operator, kine, opentelemetry-collector, argo-cd, grafana-alloy, keda, aws-otel-collector, k3s, kserve, argo-workflows, vale,...

7.5CVSS7AI score0.00392EPSS
Exploits0
cgr
cgr
added 2025/12/17 1:23 p.m.6 views

GHSA-CFPF-HRX2-8RV6 vulnerabilities

Vulnerabilities for packages: jaeger, nrdot-collector-k8s, nats-fips, opentelemetry-collector-contrib-fips, tempo, opentelemetry-collector, elastic-agent-fips, argo-workflows-fips, opentelemetry-collector-contrib, argo-rollouts-fips, aws-otel-collector-fips, nats, tempo-fips, datadog-agent-fips,...

6.1AI score
Exploits0
Rows per page
Query Builder