Lucene search
+L

153 matches found

CBLMariner
CBLMariner
added 2024/07/22 3:42 p.m.31 views

CVE-2021-42248 affecting package keda for versions less than 2.14.0-1

CVE-2021-42248 affecting package keda for versions less than 2.14.0-1. An upgraded version of the package is available that resolves this issue...

6.9AI score
Exploits0
CBLMariner
CBLMariner
added 2024/07/22 3:42 p.m.17 views

CVE-2022-1996 affecting package keda for versions less than 2.14.0-1

CVE-2022-1996 affecting package keda for versions less than 2.14.0-1. An upgraded version of the package is available that resolves this issue...

9.3CVSS7.8AI score0.02737EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.34 views

CBL Mariner 2.0 Security Update: cert-manager / keda / kube-vip-cloud-provider / prometheus-adapter (CVE-2022-3162)

The version of cert-manager / keda / kube-vip-cloud-provider / prometheus-adapter installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3162 advisory. - Users authorized to list or watch one type of...

6.5CVSS6.9AI score0.01191EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.20 views

CBL Mariner 2.0 Security Update: cert-manager / containerized-data-importer / cri-o / dcos-cli / keda / kubernetes (CVE-2024-28180)

The version of cert-manager / containerized-data-importer / cri-o / dcos-cli / keda / kubernetes installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28180 advisory. - Package jose aims to provide an...

4.3CVSS6.9AI score0.01956EPSS
Exploits0References2
OSV
OSV
added 2024/06/24 5:15 p.m.5 views

AZL-42904 CVE-2024-6104 affecting package keda for versions less than 2.14.0-2

go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7...

5.5CVSS6.6AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2024/06/24 5:15 p.m.10 views

AZL-42942 CVE-2024-6104 affecting package keda for versions less than 2.4.0-22

go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7...

5.5CVSS6.6AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2024/06/11 5:16 p.m.8 views

AZL-42637 CVE-2024-35255 affecting package keda for versions less than 2.14.1-1

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

5.5CVSS6.7AI score0.00788EPSS
Exploits0References1
Wolfi
Wolfi
added 2024/06/11 5:16 p.m.115 views

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: policy-controller, argo-events, cortex, druid, py3-cassandra-medusa, harbor-registry, guac, opentelemetry-collector, flux-image-reflector-controller, hugo, restic, terragrunt, bank-vaults, tempo, argo-workflows, zarf, tekton-chains, zot, flyte, flux,...

5.5CVSS6.1AI score0.00788EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/05/23 2:9 p.m.42 views

Low: Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.12.1-394 Security Update

Custom Metrics Autoscaler Operator for Red Hat OpenShift including security updates. The following updates for the Custom Metric Autoscaler operator for Red Hat OpenShift are now available: custom-metrics-autoscaler-adapter-container custom-metrics-autoscaler-admission-webhooks-container...

7.5CVSS7AI score0.91969EPSS
Exploits1References1
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.23 views

CVE-2024-28180 affecting package keda for versions less than 2.14.0-1

CVE-2024-28180 affecting package keda for versions less than 2.14.0-1. An upgraded version of the package is available that resolves this issue...

4.3CVSS6.6AI score0.01956EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.25 views

CVE-2024-24786 affecting package keda for versions less than 2.14.0-1

CVE-2024-24786 affecting package keda for versions less than 2.14.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.6AI score0.01262EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.7 views

CVE-2021-44716 affecting package keda for versions less than 2.14.0-1

CVE-2021-44716 affecting package keda for versions less than 2.14.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.5AI score0.03958EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.17 views

CVE-2022-3162 affecting package keda for versions less than 2.14.0-1

CVE-2022-3162 affecting package keda for versions less than 2.14.0-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.5AI score0.01191EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.29 views

CVE-2022-21698 affecting package keda for versions less than 2.14.0-1

CVE-2022-21698 affecting package keda for versions less than 2.14.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.5AI score0.05994EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/04/15 5:44 a.m.44 views

Moderate: Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.12.1-376 Bug Fixes

Custom Metrics Autoscaler Operator for Red Hat OpenShift including security updates. The following updates for the Custom Metric Autoscaler operator for Red Hat OpenShift are now available: custom-metrics-autoscaler-adapter-container custom-metrics-autoscaler-admission-webhooks-container...

7.5CVSS6.6AI score0.01956EPSS
Exploits0References9
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.27 views

CVE-2023-44487 affecting package keda for versions less than 2.4.0-14

CVE-2023-44487 affecting package keda for versions less than 2.4.0-14. A patched version of the package is available...

7.5CVSS8.2AI score0.99999EPSS
Exploits20
OSV
OSV
added 2024/03/09 1:15 a.m.10 views

AZL-35882 CVE-2024-28180 affecting package keda for versions less than 2.14.0-1

Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if t...

4.3CVSS6.4AI score0.01956EPSS
Exploits0References1
OSV
OSV
added 2024/03/09 1:15 a.m.8 views

AZL-35843 CVE-2024-28180 affecting package keda for versions less than 2.4.0-26

Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if t...

4.3CVSS6.4AI score0.01956EPSS
Exploits0References1
Wolfi
Wolfi
added 2024/03/09 1:15 a.m.59 views

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: policy-controller, apko, melange, cloudflared, guac, wolfictl, terragrunt, caddy, kube-rbac-proxy, bank-vaults, temporal, skaffold, argo-workflows, zarf, kargo, tekton-chains, zot, nerdctl, flux-kustomize-controller, oauth2-proxy, skopeo, dgraph, gitsign, fulcio,...

4.3CVSS6AI score0.01956EPSS
Exploits0
Wolfi
Wolfi
added 2024/03/07 10:54 p.m.46 views

GHSA-C5Q2-7R4C-MV6G vulnerabilities

Vulnerabilities for packages: policy-controller, apko, melange, cloudflared, guac, wolfictl, terragrunt, caddy, kube-rbac-proxy, bank-vaults, temporal, skaffold, argo-workflows, zarf, kargo, tekton-chains, zot, nerdctl, flux-kustomize-controller, oauth2-proxy, skopeo, dgraph, gitsign, fulcio,...

5.3AI score
Exploits0
Rows per page
Query Builder