Lucene search
K

43 matches found

Wolfi
Wolfi
added 2026/06/26 8:22 p.m.6 views

GHSA-W879-237Q-WC7R vulnerabilities

Vulnerabilities for packages: rootlesskit, neuvector-sigstore-interface, wolfictl, nerdctl, terragrunt, zot, pulumi-language-dotnet, nuclei, cilium-cli, mods, step-issuer, chezmoi, cilium, glab, splunk-otel-collector, gh, nfpm, opentelemetry-collector, snyk-cli, falcoctl, kubescape, flux-operator...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/04/03 7:17 p.m.9 views

CVE-2026-34986 vulnerabilities

Vulnerabilities for packages: chainloop-cli-fips, cerbos-fips, sftpgo, cert-manager-istio-csr-fips, gomplate, chainloop-artifact-cas, kyverno-fips, buildah-fips, opencost, step-kms-plugin-fips, trufflehog-fips, containerd-fips, teleport, caddy-fips, gitlab-kas, authentik-fips, conftest,...

7.5CVSS6.7AI score0.00651EPSS
Exploits0
Wolfi
Wolfi
added 2026/02/26 7:48 p.m.9 views

GHSA-Q9HV-HPM4-HJ6X vulnerabilities

Vulnerabilities for packages: extism, wolfictl, terragrunt, zot, pulumi-language-dotnet, nuclei, flux-helm-controller, cilium-cli, gitaly, crossplane-provider-aws-dynamodb, crossplane-provider-aws-lambda, nfpm, boring-registry, crossplane-provider-aws-sns, snyk-cli, goreleaser, kubescape,...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2026/02/26 7:48 p.m.9 views

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: extism, wolfictl, terragrunt, zot, pulumi-language-dotnet, nuclei, flux-helm-controller, cilium-cli, gitaly, crossplane-provider-aws-dynamodb, crossplane-provider-aws-lambda, nfpm, boring-registry, crossplane-provider-aws-sns, snyk-cli, goreleaser, kubescape,...

9.8CVSS6.7AI score0.00397EPSS
Exploits0
Chainguard
Chainguard
added 2026/02/26 7:17 p.m.9 views

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: crossplane-provider-aws-ecr-fips, crossplane-provider-keycloak, crossplane-provider-aws-cloudfront-fips, cerbos-fips, helm-diff, crossplane-provider-aws-kms-fips, rclone-fips, cert-manager-cmctl, gitea, terraform-provider-azurerm-fips,...

9.8CVSS6.7AI score0.00397EPSS
Exploits0
OSV
OSV
added 2025/12/02 5:36 p.m.3 views

BIT-FLUX-2022-24878 Improper path handling in Kustomization files allows for denial of service

Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious kustomization.yaml allows an attacker to cause a Denial of Service at the controller level. Workarounds include automated tooling in the user's CI/CD pipeline to...

7.7CVSS6.6AI score0.0095EPSS
Exploits0References2
OSV
OSV
added 2025/12/02 5:36 p.m.4 views

BIT-FLUX-2022-24877 Improper path handling in kustomization files allows path traversal

Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious kustomization.yaml allows an attacker to expose sensitive data from the controller’s pod filesystem and possibly privilege escalation in multi-tenancy deployments...

9.9CVSS7AI score0.01108EPSS
Exploits0References2
OSV
OSV
added 2025/12/02 5:36 p.m.4 views

BIT-FLUX-2022-24817 Improper kubeconfig validation allows arbitrary code execution

Flux2 is an open and extensible continuous delivery solution for Kubernetes. Flux2 versions between 0.1.0 and 0.29.0, helm-controller 0.1.0 to v0.19.0, and kustomize-controller 0.1.0 to v0.23.0 are vulnerable to Code Injection via malicious Kubeconfig. In multi-tenancy deployments this can also...

9.9CVSS7.3AI score0.01044EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3043

Malicious code in bioql PyPI...

7.7CVSS6.8AI score0.0095EPSS
Exploits0References3
Chainguard
Chainguard
added 2025/08/09 1:17 p.m.9 views

GHSA-J5PM-7495-QMR3 vulnerabilities

Vulnerabilities for packages: kube-conformance, ytt, kubernetes-csi-external-provisioner-fips, cerbos-fips, helm-operator-fips, helm-set-status, cass-operator-fips-no-pvc-delete, gitea, rqlite-fips, gomplate, kyverno-fips, mcp-grafana-fips, trust-manager, step-kms-plugin-fips, trufflehog-fips,...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 9:42 p.m.8 views

CVE-2022-24877

Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious kustomization.yaml allows an attacker to expose sensitive data from the controller’s pod filesystem and possibly privilege escalation in multi-tenancy deployments...

9.9CVSS6.8AI score0.01108EPSS
Exploits0References1
Chainguard
Chainguard
added 2024/12/18 6:23 p.m.7 views

GHSA-32GQ-X56H-299C vulnerabilities

Vulnerabilities for packages: sops, chezmoi, flux-kustomize-controller-fips, ksops, age-fips, sops-fips, grafana, age, flux-kustomize-controller, grafana-fips, litestream...

5.9AI score
Exploits0
OSV
OSV
added 2024/08/21 2:30 p.m.10 views

GO-2022-0260 Privilege escalation to cluster admin on multi-tenant environments in github.com/fluxcd/kustomize-controller

Privilege escalation to cluster admin on multi-tenant environments in github.com/fluxcd/kustomize-controller...

9CVSS8.8AI score0.01766EPSS
Exploits1References2
Wolfi
Wolfi
added 2024/06/11 5:16 p.m.112 views

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: buildkitd, zarf, sqlpad, flux, rook, sigstore-scaffolding, guac, timestamp-authority, prometheus-operator, terragrunt, py3-cassandra-medusa, fluent-bit-plugin-loki, pulumi, fulcio, zot, velero, nuclei, restic, datadog-agent, cluster-autoscaler,...

5.5CVSS6.5AI score0.00788EPSS
Exploits0
OSV
OSV
added 2024/03/06 10:55 a.m.18 views

BIT-KUSTOMIZE-2022-24877 Improper path handling in kustomization files allows path traversal

Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious kustomization.yaml allows an attacker to expose sensitive data from the controller’s pod filesystem and possibly privilege escalation in multi-tenancy deployments...

9.9CVSS9AI score0.01108EPSS
Exploits0References2
OSV
OSV
added 2024/03/06 10:55 a.m.21 views

BIT-KUSTOMIZE-2022-24878 Improper path handling in Kustomization files allows for denial of service

Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious kustomization.yaml allows an attacker to cause a Denial of Service at the controller level. Workarounds include automated tooling in the user's CI/CD pipeline to...

7.7CVSS6.4AI score0.0095EPSS
Exploits0References2
Chainguard
Chainguard
added 2024/03/05 11:15 p.m.76 views

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: helm-operator-fips, nfs-subdir-external-provisioner-fips, cass-operator-fips-no-pvc-delete, gomplate, crossplane-provider-aws-kms, trust-manager, kube-rbac-proxy-fips, prometheus-node-exporter, osv-scanner, caddy-fips, flux-image-automation-controller,...

7.5CVSS6.7AI score0.01262EPSS
Exploits0
Chainguard
Chainguard
added 2023/10/25 9:17 p.m.83 views

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: prometheus-blackbox-exporter, kiam, cortex, terraform-provider-sendgrid-fips, dynamic-localpv-provisioner-fips, src, conftest-fips, kubescape, prometheus-adapter-fips, k3d, prometheus-stackdriver-exporter, slsa-verifier, buildkitd, kubeflow, vault-csi-provider,...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2023/10/10 9:28 p.m.43 views

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: grpcurl, frp, kubewatch, pulumi-language-dotnet, flux-helm-controller, metacontroller, ip-masq-agent, gobuster, terraform-provider-sendgrid, kind, memcached-exporter, prometheus-adapter, rqlite, fuse-overlayfs-snapshotter, src, kubescape, cortex, metrics-server,...

5.9AI score
Exploits0
Github Security Blog
Github Security Blog
added 2022/05/20 4:58 p.m.28 views

Improper path handling in Kustomization files allows for denial of service

The kustomize-controller enables the use of Kustomize’s functionality when applying Kubernetes declarative state onto a cluster. A malicious user can use a specially crafted kustomization.yaml to cause Denial of Service at controller level. In multi-tenancy deployments this can lead to multiple...

7.7CVSS0.8AI score0.0095EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder