63 matches found
CVE-2025-61731 vulnerabilities
Vulnerabilities for packages: go-jsonnet, tofu-controller, kubernetes-csi-external-resizer, metacontroller, terraform-mcp-server, nri-haproxy, wgcf, cargobump, nats-server-config-reloader, nri-nagios, nri-couchbase, swagger, esbuild, crossplane-provider-aws-rds, dapr, rancher-helm, opentofu,...
CVE-2025-61730 vulnerabilities
Vulnerabilities for packages: telegraf, tofu-controller, cloud-provider-vsphere, spqr, policy-controller, volume-modifier-for-k8s, kor, aws-signer-notation-plugin, yace, kubernetes-csi-external-resizer, metacontroller, helm-operator, http-echo, opensearch-k8s-operator, ratify, dockerize,...
CVE-2025-61726 vulnerabilities
Vulnerabilities for packages: telegraf, tofu-controller, cloud-provider-vsphere, spqr, policy-controller, volume-modifier-for-k8s, kor, aws-signer-notation-plugin, yace, kubernetes-csi-external-resizer, metacontroller, helm-operator, opensearch-k8s-operator, ratify, dockerize, terraform-mcp-serve...
CVE-2025-61730 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, aactl, gobuster, pvc-autoresizer-fips, fuse-overlayfs-snapshotter, prometheus-postgres-exporter, mattermost-fips, qemu-guesthelper, src-fingerprint-fips, docker-machine-driver-linode, azuredisk-csi, spegel-fips,...
GHSA-GR56-3GP6-6GMJ vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, aactl, gobuster, pvc-autoresizer-fips, fuse-overlayfs-snapshotter, prometheus-postgres-exporter, mattermost-fips, qemu-guesthelper, src-fingerprint-fips, docker-machine-driver-linode, azuredisk-csi, spegel-fips,...
CVE-2025-68119 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, aactl, gobuster, pvc-autoresizer-fips, fuse-overlayfs-snapshotter, prometheus-postgres-exporter, mattermost-fips, qemu-guesthelper, src-fingerprint-fips, docker-machine-driver-linode, nats-server-config-reloader, azuredisk-cs...
GHSA-XVQR-69V8-F3GV vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, aactl, gobuster, pvc-autoresizer-fips, fuse-overlayfs-snapshotter, prometheus-postgres-exporter, mattermost-fips, qemu-guesthelper, src-fingerprint-fips, docker-machine-driver-linode, nats-server-config-reloader, azuredisk-cs...
GHSA-CM6P-QC7V-M3JW vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, aactl, gobuster, pvc-autoresizer-fips, fuse-overlayfs-snapshotter, prometheus-postgres-exporter, mattermost-fips, qemu-guesthelper, src-fingerprint-fips, docker-machine-driver-linode, nats-server-config-reloader, azuredisk-cs...
CVE-2025-61731 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, aactl, gobuster, pvc-autoresizer-fips, fuse-overlayfs-snapshotter, prometheus-postgres-exporter, mattermost-fips, qemu-guesthelper, src-fingerprint-fips, docker-machine-driver-linode, nats-server-config-reloader, azuredisk-cs...
CVE-2025-61729 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, fluent-operator-fips, aactl, crossplane-provider-terraform-fips, gobuster, fuse-overlayfs-snapshotter, prometheus-postgres-exporter, dragonfly-operator-fips, src-fingerprint-fips, chainctl, nri-kubernetes, polaris-fips,...
CVE-2025-61729 vulnerabilities
Vulnerabilities for packages: go-jsonnet, tofu-controller, kube-vip, kubernetes-csi-external-resizer, terraform-mcp-server, harbor-scanner-trivy, nri-haproxy, helm-mapkubeapis, pulumi-language-dotnet, nova, rancher-fleet, oras, syft, kubebuilder, prometheus-alertmanager, terraform-provider-google...
GHSA-GWRF-JF3H-W649 vulnerabilities
Vulnerabilities for packages: octo-sts, mattmoor-chainit, shfmt, cloud-provider-aws, falco, nvidia-nsight-compute-12.9, secrets-store-csi-driver-provider-aws-fips, kube-logging-operator-custom-runner-fips, eks-distro-fips, terraform-provider-sendgrid-fips,...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, aactl, fuse-overlayfs-snapshotter, caddy, prometheus-postgres-exporter, mattermost-fips, qemu-guesthelper, chainctl, polaris-fips, azuredisk-csi, openfga-fips, glab, gofumpt, spegel-fips, amazon-cloudwatch-agent, kbld,...
Moderate: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.2.4
Logging for Red Hat OpenShift - 6.2.4 Red Hat OpenShift Logging 6.2.4 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
PT-2024-27062 · Unknown · Logging-Operator
Name of the Vulnerable Software and Affected Versions: logging-operator version 4.6.0 Description: The issue allows attackers to access sensitive data and escalate privileges by obtaining the service account's token due to insecure permissions. Recommendations: For logging-operator version 4.6.0,...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...