Lucene search
K

14 matches found

RedHat Linux
RedHat Linux
added 14 hours ago8 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.18.46 security and extras update

Red Hat OpenShift Container Platform release 4.18.46 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.18. Red Hat Product Security has rated this update as having a security impact of...

8.7CVSS5.9AI score0.00656EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/15 1:45 p.m.5 views

CVE-2026-35469

A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Servi...

8.7CVSS5.8AI score0.00656EPSS
Exploits0References3
Wolfi
Wolfi
added 2026/04/11 2:51 a.m.7 views

GHSA-M4PR-4J3G-9V7V vulnerabilities

Vulnerabilities for packages: smarter-device-manager, bank-vaults, otel-cli, neuvector-scanner, percona-server-mongodb-operator, aws-application-networking-k8s, kubernetes-ingress-defaultbackend, bazelisk, mockery, mc, aws-eks-pod-identity-agent, gobuster, dataplaneapi, s5cmd,...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/02/10 1:48 p.m.10 views

GHSA-H355-32PF-P2XM vulnerabilities

Vulnerabilities for packages: bank-vaults, langfuse, pulumi-kubernetes-operator, otel-cli, percona-server-mongodb-operator, flux-kustomize-controller, aws-application-networking-k8s, kubernetes-ingress-defaultbackend, bazelisk, crossplane-provider-aws-rds, mockery, podinfo, mc, kube-rbac-proxy,...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/01/31 7:17 p.m.33 views

GHSA-G9Q4-QJX4-2V7Q vulnerabilities

Vulnerabilities for packages: datadog-agent-fips, cert-manager-cmctl, gatekeeper-fips, thanos-operator-fips, google-osconfig-agent, xeol, helm-operator, flux-source-watcher-fips, helm-set-status, nvidia-nsight-compute-13.2, argo-cd-fips, agentbeat-fips, loki, zitadel, qemu-guesthelper,...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2025/09/24 2:18 p.m.8 views

CVE-2025-47910 vulnerabilities

Vulnerabilities for packages: render-template, cloud-provider-gcp-cloud-controller-manager, zot, google-osconfig-agent, controller-gen, harbor-registry, kubernetes-csi-driver-hostpath, nuclei, ipfs-cluster, helm-operator, helm-set-status, karpenter, undock, dex, kube-logging-operator, nodetaint,...

5.4CVSS6.8AI score0.00308EPSS
Exploits0
Wolfi
Wolfi
added 2025/08/09 1:47 p.m.11 views

GHSA-J5PM-7495-QMR3 vulnerabilities

Vulnerabilities for packages: smarter-device-manager, nri-memcached, otel-cli, flux-kustomize-controller, gosu, yq, bazelisk, podinfo, mc, kube-rbac-proxy, aws-eks-pod-identity-agent, kubevela, s5cmd, cass-operator, bento, datadog-agent, dive, k8sgateway, docker-cli-buildx, kubeflow,...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2025/08/09 1:17 p.m.25 views

CVE-2025-47907 vulnerabilities

Vulnerabilities for packages: multus-cni, kubevela, descheduler-fips, datadog-agent-fips, nuclei, prometheus-pushgateway-fips, openfga, aws-signer-notation-plugin, hydra-fips, consul-fips, cilium-envoy, ratify, gitlab-runner, consul, aws-ebs-csi-driver-fips, git-lfs-fips,...

7CVSS6.7AI score0.00331EPSS
Exploits0
Chainguard
Chainguard
added 2025/03/22 4:12 p.m.37 views

CVE-2025-30204 vulnerabilities

Vulnerabilities for packages: zot, harbor-registry, crossplane, terraform-provider-azurerm, xeol, nuclei, kubernetes, sqlexporter, argocd-image-updater-fips, kargo, minio-operator-fips, openfga, argo-cd-fips, agentbeat-fips, promxy, argo-rollouts, loki, hydra-fips, prometheus-fips, git-sync-fips,...

7.5CVSS6.7AI score0.00693EPSS
Exploits0
Chainguard
Chainguard
added 2025/02/25 1:11 p.m.14 views

GHSA-CRQM-PWHX-J97F vulnerabilities

Vulnerabilities for packages: multus-cni, kubevela, datadog-agent-fips, go-fips, rabbitmq-messaging-topology-operator-fips, crossplane, nuclei, prometheus-pushgateway-fips, configmap-reload-fips, neuvector-sigstore-interface-fips, minio-operator-fips, opa-fips, prometheus-fips,...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2024/09/06 9:15 p.m.23 views

CVE-2024-34156 vulnerabilities

Vulnerabilities for packages: multus-cni, kubevela, datadog-agent-fips, go-fips, rabbitmq-messaging-topology-operator-fips, crossplane, nuclei, prometheus-pushgateway-fips, configmap-reload-fips, neuvector-sigstore-interface-fips, minio-operator-fips, opa-fips, prometheus-fips,...

7.5CVSS6.8AI score0.01127EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2019/12/17 2:18 a.m.4 views

kubernetes: Bearer tokens written to logs at high verbosity levels (>= 7)

The Kubernetes client-go library logs request headers at verbosity levels of 7 or higher. This can disclose credentials to unauthorized users via logs or command output. Kubernetes components such as kube-apiserver prior to v1.16.0, which make use of basic or bearer token authentication, and run ...

6.5CVSS6.6AI score0.01766EPSS
Exploits0References4
OSV
OSV
added 2019/08/29 1:15 a.m.28 views

CVE-2019-11250

The Kubernetes client-go library logs request headers at verbosity levels of 7 or higher. This can disclose credentials to unauthorized users via logs or command output. Kubernetes components such as kube-apiserver prior to v1.16.0, which make use of basic or bearer token authentication, and run ...

6.5CVSS6.7AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2019/08/29 1:15 a.m.28 views

CVE-2019-11250

The Kubernetes client-go library logs request headers at verbosity levels of 7 or higher. This can disclose credentials to unauthorized users via logs or command output. Kubernetes components such as kube-apiserver prior to v1.16.0, which make use of basic or bearer token authentication, and run ...

6.5CVSS6.3AI score0.01766EPSS
Exploits0References2
Rows per page
Query Builder