235 matches found
GHSA-9VCR-P3RJ-Q5Q6 vulnerabilities
Vulnerabilities for packages: tkn, cloudbeat, tekton-chains, trivy-operator-fips, crossplane, kubescape-server, kyverno-notation-aws, kubescape-server-fips, tflint, zarf, teleport, kubescape, kyverno-fips, spire-server-fips, gitsign, neuvector-sigstore-interface, trivy, kyverno,...
CVE-2026-49834 vulnerabilities
Vulnerabilities for packages: neuvector-sigstore-interface, aactl, tkn, kyverno, teleport, zarf, crossplane, kyverno-notation-aws, trivy-operator, tekton-chains, tflint, trivy, policy-controller, falcoctl, gitsign, kubescape...
GHSA-9VCR-P3RJ-Q5Q6 vulnerabilities
Vulnerabilities for packages: neuvector-sigstore-interface, aactl, tkn, kyverno, teleport, zarf, crossplane, kyverno-notation-aws, trivy-operator, tekton-chains, tflint, trivy, policy-controller, falcoctl, gitsign, kubescape...
GHSA-4JJ9-CGQC-X9H5 vulnerabilities
Vulnerabilities for packages: neuvector-scanner-fips...
CVE-2025-66001 vulnerabilities
Vulnerabilities for packages: neuvector-scanner-fips...
GHSA-8FF6-PC43-JWV3 vulnerabilities
Vulnerabilities for packages: neuvector-scanner...
CVE-2025-53884 vulnerabilities
Vulnerabilities for packages: neuvector-scanner...
GHSA-8FF6-PC43-JWV3 vulnerabilities
Vulnerabilities for packages: neuvector-scanner-fips, neuvector-scanner...
CVE-2025-53884 vulnerabilities
Vulnerabilities for packages: neuvector-scanner-fips, neuvector-scanner...
Fleet has PSS Bypass through addLabelsFromOptions in Fleet Agent
Impact A vulnerability has been identified in Fleet's agent-side deployer, which did not filter security-sensitive keys from namespaceLabels in fleet.yaml or BundleDeployment.spec.options.namespaceLabels when applying them to the target namespace. An attacker with git push access to a...
GHSA-47Q9-M4WW-924M vulnerabilities
Vulnerabilities for packages: ko-fips, spire-server, tkn, cloudbeat, tekton-chains, trivy-operator-fips, crossplane, kubescape-server, kyverno-notation-aws, kubescape-server-fips, tflint, zarf, teleport, chainctl-fips, kubescape, kyverno-fips, spire-server-fips, gitsign,...
CVE-2026-48702 vulnerabilities
Vulnerabilities for packages: ko-fips, spire-server, tkn, cloudbeat, tekton-chains, trivy-operator-fips, crossplane, kubescape-server, kyverno-notation-aws, kubescape-server-fips, tflint, zarf, teleport, chainctl-fips, kubescape, kyverno-fips, spire-server-fips, gitsign,...
GHSA-47Q9-M4WW-924M vulnerabilities
Vulnerabilities for packages: teleport, policy-controller, falcoctl, kyverno, spire-server, neuvector-sigstore-interface, tkn, goreleaser, crossplane, kyverno-notation-aws, tekton-chains, ratify, tflint, ko, kubescape, zarf, aactl, slsa-verifier, trivy-operator, gitsign...
CVE-2026-48702 vulnerabilities
Vulnerabilities for packages: teleport, policy-controller, falcoctl, kyverno, spire-server, neuvector-sigstore-interface, tkn, goreleaser, crossplane, kyverno-notation-aws, tekton-chains, ratify, tflint, ko, kubescape, zarf, aactl, slsa-verifier, trivy-operator, gitsign...
CVE-2026-53489 vulnerabilities
Vulnerabilities for packages: k3s, beats-fips, kubescape-server, helm-mapkubeapis, consul-k8s, packer, jfrog-cli, neuvector-fips, kubescape-server-fips, helm-fips, neuvector-scanner-fips, gitlab-rails-ce-fips, helm-exporter-fips, docker-cli-buildx, chartmuseum, fuse-overlayfs-snapshotter, skaffol...
CVE-2026-53492 vulnerabilities
Vulnerabilities for packages: k3s, beats-fips, kubescape-server, helm-mapkubeapis, consul-k8s, packer, jfrog-cli, neuvector-fips, kubescape-server-fips, helm-fips, neuvector-scanner-fips, gitlab-rails-ce-fips, helm-exporter-fips, docker-cli-buildx, chartmuseum, fuse-overlayfs-snapshotter, skaffol...
CVE-2026-50195 vulnerabilities
Vulnerabilities for packages: k3s, beats-fips, kubescape-server, helm-mapkubeapis, consul-k8s, packer, jfrog-cli, neuvector-fips, kubescape-server-fips, helm-fips, neuvector-scanner-fips, gitlab-rails-ce-fips, helm-exporter-fips, docker-cli-buildx, chartmuseum, fuse-overlayfs-snapshotter, skaffol...
GHSA-RGH6-RFWX-V388 vulnerabilities
Vulnerabilities for packages: k3s, beats-fips, kubescape-server, helm-mapkubeapis, consul-k8s, packer, jfrog-cli, neuvector-fips, kubescape-server-fips, helm-fips, neuvector-scanner-fips, gitlab-rails-ce-fips, helm-exporter-fips, docker-cli-buildx, chartmuseum, fuse-overlayfs-snapshotter, skaffol...
GHSA-CVXM-645Q-P574 vulnerabilities
Vulnerabilities for packages: k3s, beats-fips, kubescape-server, helm-mapkubeapis, consul-k8s, packer, jfrog-cli, neuvector-fips, kubescape-server-fips, helm-fips, neuvector-scanner-fips, gitlab-rails-ce-fips, helm-exporter-fips, docker-cli-buildx, chartmuseum, fuse-overlayfs-snapshotter, skaffol...
GHSA-33VJ-92QQ-66HC vulnerabilities
Vulnerabilities for packages: k3s, beats-fips, kubescape-server, helm-mapkubeapis, consul-k8s, packer, jfrog-cli, neuvector-fips, kubescape-server-fips, helm-fips, neuvector-scanner-fips, gitlab-rails-ce-fips, helm-exporter-fips, docker-cli-buildx, chartmuseum, fuse-overlayfs-snapshotter, skaffol...