965 matches found
CVE-2025-71369
picklescan before 0.0.28 fails to detect malicious pickle files that use torch.utils.data.datapipes.utils.decoder.basichandlers in reduce methods, allowing attackers to bypass safety checks. Remote attackers can embed undetected malicious code in pickle files that executes during deserialization,...
GHSA-XCHC-CQWG-G76Q vulnerabilities
Vulnerabilities for packages: argo-workflows, kubeflow-pipelines...
CVE-2026-42183 vulnerabilities
Vulnerabilities for packages: argo-workflows, kubeflow-pipelines...
GHSA-7VF8-2CR6-54MF vulnerabilities
Vulnerabilities for packages: argo-workflows, kubeflow-pipelines...
CVE-2026-42297 vulnerabilities
Vulnerabilities for packages: argo-workflows, kubeflow-pipelines...
CVE-2026-42295 vulnerabilities
Vulnerabilities for packages: argo-workflows, kubeflow-pipelines...
GHSA-P4GQ-3VXJ-F4JQ vulnerabilities
Vulnerabilities for packages: argo-workflows, kubeflow-pipelines...
GHSA-XCHC-CQWG-G76Q vulnerabilities
Vulnerabilities for packages: argo-workflows-fips, kubeflow-pipelines-fips, argo-workflows, kubeflow-pipelines-driver-fips, kubeflow-pipelines...
GHSA-P4GQ-3VXJ-F4JQ vulnerabilities
Vulnerabilities for packages: argo-workflows-fips, kubeflow-pipelines-fips, argo-workflows, kubeflow-pipelines-driver-fips, kubeflow-pipelines...
CVE-2026-42297 vulnerabilities
Vulnerabilities for packages: argo-workflows-fips, kubeflow-pipelines-fips, argo-workflows, kubeflow-pipelines-driver-fips, kubeflow-pipelines...
CVE-2026-42295 vulnerabilities
Vulnerabilities for packages: argo-workflows-fips, kubeflow-pipelines-fips, argo-workflows, kubeflow-pipelines-driver-fips, kubeflow-pipelines...
CVE-2026-42183 vulnerabilities
Vulnerabilities for packages: argo-workflows-fips, kubeflow-pipelines-fips, argo-workflows, kubeflow-pipelines-driver-fips, kubeflow-pipelines...
GHSA-7VF8-2CR6-54MF vulnerabilities
Vulnerabilities for packages: argo-workflows-fips, kubeflow-pipelines-fips, argo-workflows, kubeflow-pipelines-driver-fips, kubeflow-pipelines...
PT-2026-54924
Name of the Vulnerable Software and Affected Versions FatFS versions R0.16 and earlier Description An integer overflow occurs in the mount volume function during FAT32 processing when the operation fasize = fs-n fats wraps. This allows an attacker to control file-size metadata, resulting in unsaf...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: chisel-fips, opentelemetry-collector, trivy-operator-fips, flux-image-automation-controller, mattermost, knative-eventing-fips, seaweedfs-rocksdb-fips, flux, osv-scanner, coder-fips, traefik, argo-workflows, gitlab-kas, istio, prometheus-operator, helm, reports-serve...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: chisel-fips, opentelemetry-collector, trivy-operator-fips, flux-image-automation-controller, mattermost, knative-eventing-fips, seaweedfs-rocksdb-fips, flux, osv-scanner, coder-fips, docker-machine-driver-harvester, traefik, argo-workflows, gitlab-kas, istio,...
GHSA-78MQ-XCR3-XM33 vulnerabilities
Vulnerabilities for packages: apko-fips, grype, splunk-otel-collector, cg, opentelemetry-collector, trivy-operator-fips, flux-image-automation-controller, mattermost, knative-eventing-fips, flux, osv-scanner, trufflehog-fips, pulumi, splunk-otel-collector-fips, argo-events-fips, chainctl,...
GHSA-QPW4-5X99-6VJP vulnerabilities
Vulnerabilities for packages: apko-fips, grype, splunk-otel-collector, chisel-fips, clickhouse-backup-fips, cg, rootlesskit, opentelemetry-collector, trivy-operator-fips, flux-image-automation-controller, mattermost, knative-eventing-fips, seaweedfs-rocksdb-fips, flux, osv-scanner, trufflehog-fip...
GHSA-F5WC-C3C7-36MC vulnerabilities
Vulnerabilities for packages: apko-fips, grype, cg, opentelemetry-collector, trivy-operator-fips, flux-image-automation-controller, buildah-fips, mattermost, knative-eventing-fips, flux, osv-scanner, trufflehog-fips, vault, pulumi, docker-machine-driver-harvester, argo-events-fips, chainctl,...
GHSA-9M57-25V3-79X9 vulnerabilities
Vulnerabilities for packages: opentelemetry-collector, buildah-fips, mattermost, knative-eventing-fips, flux, traefik, argo-workflows, gitlab-kas, istio, prometheus-operator, helm, reports-server, upwind-agent, kine, knative-serving-fips, zitadel, kube-state-metrics, harbor, terraform,...