CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

35 matches found

Chainguard•added 2026/05/22 7:17 p.m.•7 views

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: chartmuseum, helm-exporter, chainctl-fips, tw, kargo, fuse-overlayfs-snapshotter, trivy-fips, kubevela-fips, grype-fips, xeol, kubescape-operator, docker-fips, helm-mapkubeapis, tigera-operator, neuvector, k3s, k8ssandra-client-fips, helm-exporter-fips, cg, k9s,...

5.4AI score

Exploits1

Chainguard•added 2026/05/20 7:17 p.m.•4 views

GHSA-CRHJ-59GH-8X96 vulnerabilities

Vulnerabilities for packages: witness, chainctl-fips, flux-fips, kargo, external-secrets-operator, gitaly-fips, trivy-fips, kubevela-fips, pulumi-language-dotnet, snyk-cli, grafana-alloy, trufflehog, grype-fips, rancher-fleet-fips, gitaly, xeol, gomplate-fips, gitsign, src-fingerprint, flux, cg,...

5.4AI score

Exploits0

Chainguard•added 2026/05/20 7:17 p.m.•10 views

CVE-2026-45571 vulnerabilities

5.4CVSS5.4AI score0.00014EPSS

Exploits0

Chainguard•added 2026/05/20 7:17 p.m.•4 views

GHSA-M7CR-M3PV-HGRP vulnerabilities

5.4AI score

Exploits0

Wolfi•added 2026/03/31 1:48 p.m.•9 views

CVE-2026-32285 vulnerabilities

Vulnerabilities for packages: goreleaser, minio, datadog-agent, grafana, prometheus, ollama, tempo, eksctl, malcontent, witness, vcluster, dgraph, dagger, loki, teleport, redpanda, lazygit, nuclei, cri-tools, maru, kubevela, terraform-mcp-server, opentelemetry-collector-contrib, rclone, weaviate,...

7.5CVSS6.2AI score0.00031EPSS

Exploits1

RedhatCVE•added 2026/01/09 12:37 p.m.•5 views

CVE-2023-50976

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

9.8CVSS6.9AI score0.00121EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-55703

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00121EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-34868

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00285EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-28634

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00046EPSS

Exploits1References1

Chainguard•added 2025/08/09 1:17 p.m.•7 views

GHSA-J5PM-7495-QMR3 vulnerabilities

Vulnerabilities for packages: apache-beam-python-3.11-sdk, cilium-envoy-fips, flux-helm-controller, logstash, witness, gitlab-kas-fips, neuvector-dbgen, trivy-fips, certificate-transparency-fips, kubernetes-csi-driver-nfs, redka, cluster-api-gcp-controller, terraform, crossplane-provider-gcp,...

5.4AI score

Exploits0

RedhatCVE•added 2025/05/23 2:34 a.m.•3 views

CVE-2023-30450

rpk in Redpanda before 23.1.2 mishandles the redpanda.rpcservertls field, leading to for example situations in which there is a data type mismatch that cannot be automatically fixed by rpk, and instead a user must reconfigure while a cluster is turned off in order to have TLS on broker RPC ports...

4.3CVSS6.8AI score0.00285EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:56 a.m.•3 views

CVE-2023-24619

Redpanda before 22.3.12 discloses cleartext AWS credentials. The import functionality in the rpk binary logs an AWS Access Key ID and Secret in cleartext to standard output, allowing a local user to view the key in the console, or in Kubernetes logs if stdout output is collected. The fixed versio...

5.5CVSS6.6AI score0.00046EPSS

Exploits1References1

NVD•added 2023/12/18 12:15 a.m.•6 views

CVE-2023-50976

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

9.8CVSS0.00121EPSS

Exploits1References5

OSV•added 2023/12/18 12:15 a.m.•2 views

CVE-2023-50976

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

9.8CVSS6.9AI score

Exploits0References5

Prion•added 2023/12/18 12:15 a.m.•14 views

Authorization

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

7.5CVSS7.2AI score0.00121EPSS

Exploits1References5Affected Software1

CNNVD•added 2023/12/18 12:0 a.m.•0 views

Redpanda Security Vulnerabilities

Redpanda is a streaming data platform for developers. It is compatible with the Kafka API. Redpanda has a security vulnerability that stems from a lack of authorization checks in the Transactions API. Affected products and versions: Redpanda versions before 23.1.21, 23.2.x versions before 23.2.18...

9.8CVSS6.8AI score0.00121EPSS

Exploits1References7

Positive Technologies•added 2023/12/17 12:0 a.m.•1 views

PT-2023-31716 · Redpanda · Redpanda

Name of the Vulnerable Software and Affected Versions: Redpanda versions prior to 23.1.21 Redpanda versions 23.2.x prior to 23.2.18 Description: The issue is related to missing authorization checks in the "Transactions API". This could potentially allow unauthorized access or actions...

9.8CVSS9.2AI score0.00121EPSS

Exploits1References9

Vulnrichment•added 2023/12/17 12:0 a.m.•4 views

CVE-2023-50976

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

9.5AI score0.00121EPSS

Exploits1References5

CVE•added 2023/12/17 12:0 a.m.•45 views

CVE-2023-50976

CVE-2023-50976 affects Redpanda before 23.1.21 and 23.2.x before 23.2.18. The issue is missing authorization checks in the Transactions API, as stated by multiple sources (Redpanda/Redpanda PRs and security portals). Impact is implied as high due to authorization gaps, but the connected documents...

9.8CVSS9.3AI score0.00121EPSS

Exploits1References5Affected Software1