14 matches found
Important: Red Hat Security Advisory: OpenShift Container Platform 4.18.46 security and extras update
Red Hat OpenShift Container Platform release 4.18.46 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.18. Red Hat Product Security has rated this update as having a security impact of...
CVE-2026-35469
A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Servi...
GHSA-M4PR-4J3G-9V7V vulnerabilities
Vulnerabilities for packages: smarter-device-manager, bank-vaults, otel-cli, neuvector-scanner, percona-server-mongodb-operator, aws-application-networking-k8s, kubernetes-ingress-defaultbackend, bazelisk, mockery, mc, aws-eks-pod-identity-agent, gobuster, dataplaneapi, s5cmd,...
GHSA-H355-32PF-P2XM vulnerabilities
Vulnerabilities for packages: bank-vaults, langfuse, pulumi-kubernetes-operator, otel-cli, percona-server-mongodb-operator, flux-kustomize-controller, aws-application-networking-k8s, kubernetes-ingress-defaultbackend, bazelisk, crossplane-provider-aws-rds, mockery, podinfo, mc, kube-rbac-proxy,...
GHSA-G9Q4-QJX4-2V7Q vulnerabilities
Vulnerabilities for packages: datadog-agent-fips, cert-manager-cmctl, gatekeeper-fips, thanos-operator-fips, google-osconfig-agent, xeol, helm-operator, flux-source-watcher-fips, helm-set-status, nvidia-nsight-compute-13.2, argo-cd-fips, agentbeat-fips, loki, zitadel, qemu-guesthelper,...
CVE-2025-47910 vulnerabilities
Vulnerabilities for packages: render-template, cloud-provider-gcp-cloud-controller-manager, zot, google-osconfig-agent, controller-gen, harbor-registry, kubernetes-csi-driver-hostpath, nuclei, ipfs-cluster, helm-operator, helm-set-status, karpenter, undock, dex, kube-logging-operator, nodetaint,...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: smarter-device-manager, nri-memcached, otel-cli, flux-kustomize-controller, gosu, yq, bazelisk, podinfo, mc, kube-rbac-proxy, aws-eks-pod-identity-agent, kubevela, s5cmd, cass-operator, bento, datadog-agent, dive, k8sgateway, docker-cli-buildx, kubeflow,...
CVE-2025-47907 vulnerabilities
Vulnerabilities for packages: multus-cni, kubevela, descheduler-fips, datadog-agent-fips, nuclei, prometheus-pushgateway-fips, openfga, aws-signer-notation-plugin, hydra-fips, consul-fips, cilium-envoy, ratify, gitlab-runner, consul, aws-ebs-csi-driver-fips, git-lfs-fips,...
CVE-2025-30204 vulnerabilities
Vulnerabilities for packages: zot, harbor-registry, crossplane, terraform-provider-azurerm, xeol, nuclei, kubernetes, sqlexporter, argocd-image-updater-fips, kargo, minio-operator-fips, openfga, argo-cd-fips, agentbeat-fips, promxy, argo-rollouts, loki, hydra-fips, prometheus-fips, git-sync-fips,...
GHSA-CRQM-PWHX-J97F vulnerabilities
Vulnerabilities for packages: multus-cni, kubevela, datadog-agent-fips, go-fips, rabbitmq-messaging-topology-operator-fips, crossplane, nuclei, prometheus-pushgateway-fips, configmap-reload-fips, neuvector-sigstore-interface-fips, minio-operator-fips, opa-fips, prometheus-fips,...
CVE-2024-34156 vulnerabilities
Vulnerabilities for packages: multus-cni, kubevela, datadog-agent-fips, go-fips, rabbitmq-messaging-topology-operator-fips, crossplane, nuclei, prometheus-pushgateway-fips, configmap-reload-fips, neuvector-sigstore-interface-fips, minio-operator-fips, opa-fips, prometheus-fips,...
kubernetes: Bearer tokens written to logs at high verbosity levels (>= 7)
The Kubernetes client-go library logs request headers at verbosity levels of 7 or higher. This can disclose credentials to unauthorized users via logs or command output. Kubernetes components such as kube-apiserver prior to v1.16.0, which make use of basic or bearer token authentication, and run ...
CVE-2019-11250
The Kubernetes client-go library logs request headers at verbosity levels of 7 or higher. This can disclose credentials to unauthorized users via logs or command output. Kubernetes components such as kube-apiserver prior to v1.16.0, which make use of basic or bearer token authentication, and run ...
CVE-2019-11250
The Kubernetes client-go library logs request headers at verbosity levels of 7 or higher. This can disclose credentials to unauthorized users via logs or command output. Kubernetes components such as kube-apiserver prior to v1.16.0, which make use of basic or bearer token authentication, and run ...