137 matches found
EUVD-2025-0035
Malicious code in bioql PyPI...
EUVD-2022-6984
Malicious code in bioql PyPI...
EUVD-2022-6938
Malicious code in bioql PyPI...
EUVD-2022-6887
Malicious code in bioql PyPI...
EUVD-2022-6189
Malicious code in bioql PyPI...
EUVD-2025-11372
Malicious code in bioql PyPI...
EUVD-2022-40575
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-1767
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the...
Linux Distros Unpatched Vulnerability : CVE-2023-2727
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Users may be able to launch containers using images that are restricted by ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only...
Important: Red Hat Security Advisory: Red Hat Developer Hub 1.6.2 release.
Red Hat Developer Hub 1.6.2 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...
Important: Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update
Submariner 0.20 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 2.13 Submariner enables direct networking between pods and services on different Kubernetes clusters that are either on-premises or in...
PT-2025-23952
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Envoy side-cars affected versions not specified Description A flaw exists in the Linux kernel related to insufficient validation of extensible ioctls within the pidfs subsystem. This could potential...
Important: Red Hat Security Advisory: Red Hat Developer Hub 1.5.2 release.
Red Hat Developer Hub 1.5.2 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...
Important: Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.9 security updates and bug fixes
Multicluster Engine for Kubernetes 2.4.9 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...
CVE-2025-47284
Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was discovered in the gardenlet component of Gardener prior to versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0. It could allow a user with administrative privileges for a...
CVE-2025-47283
Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was discovered in Gardener prior to versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0 that could allow a user with administrative privileges for a Gardener project to obtain...
CVE-2025-47284
Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was discovered in the gardenlet component of Gardener prior to versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0. It could allow a user with administrative privileges for a...
CVE-2025-47284 Gardener vulnerable to metadata injection for a project secret that can lead to privilege escalation
Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was discovered in the gardenlet component of Gardener prior to versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0. It could allow a user with administrative privileges for a...
CVE-2025-47284
The CVE-2025-47284 detail concerns Gardener’s gardenlet component. A vulnerability allows a user with administrative privileges for a Gardener project to gain control over seed clusters where their shoots are managed. Affected versions are prior to 1.116.4, 1.117.5, 1.118.2, and 1.119.0. The issu...
CVE-2025-47283 Bypassing project secret validation can lead to privilege escalation
Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was discovered in Gardener prior to versions 1.116.4, 1.117.5, 1.118.2, and 1.119.0 that could allow a user with administrative privileges for a Gardener project to obtain...