CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36 matches found

GHSA-XHF5-7WJV-PQXP vulnerabilities

Vulnerabilities for packages: tigera-operator, syft, datadog-agent-fips, docker-fips, dagger, zarf, envoy-gateway-fips, neuvector-fips, skaffold-fips, teleport, chaos-mesh, livekit-cli, kube-mgmt, rancher-agent, fuse-overlayfs-snapshotter, amazon-ecs-agent-fips, chainctl-fips, kubevela-fips,...

5.8AI score

Exploits0

Chainguard•added 2026/05/22 7:17 p.m.•12 views

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: tigera-operator, syft, datadog-agent-fips, docker-fips, dagger, opa, zarf, envoy-gateway-fips, eks-node-monitoring-agent, neuvector-fips, k8ssandra-client, skaffold-fips, teleport, chaos-mesh, gitlab-rails-ce, livekit-cli, kube-mgmt, cg, rancher-agent,...

5.8AI score0.00019EPSS

Exploits1

Chainguard•added 2026/05/20 7:17 p.m.•13 views

CVE-2026-45571 vulnerabilities

Vulnerabilities for packages: syft, gitea-fips, dagger, gitaly-fips, guac, zarf, skaffold-fips, kyverno, teleport, grafana-alloy-fips, external-secrets-operator, kyverno-fips, gitlab-rails-ce, gomplate-fips, src-fingerprint-fips, cg, gitlab-runner, chainctl-fips, kubevela-fips, xeol-fips,...

5.4CVSS5.8AI score0.00297EPSS

Exploits0

Chainguard•added 2026/05/20 7:17 p.m.•8 views

GHSA-CRHJ-59GH-8X96 vulnerabilities

5.8AI score

Exploits0

Chainguard•added 2026/05/20 7:17 p.m.•6 views

GHSA-M7CR-M3PV-HGRP vulnerabilities

5.8AI score

Exploits0

Wolfi•added 2026/03/31 1:48 p.m.•15 views

CVE-2026-32285 vulnerabilities

Vulnerabilities for packages: grafana-alloy, datadog-agent, lazygit, vcluster, redpanda, mcp-grafana, k3s, cri-tools, tempo, loki, dgraph, witness, kubevela, teleport, weaviate, eksctl, ollama, goreleaser, malcontent, maru, opentelemetry-collector-contrib, k8sgpt, opentelemetry-collector, nfpm,...

7.5CVSS6.4AI score0.00542EPSS

Exploits1

RedhatCVE•added 2026/01/09 12:37 p.m.•6 views

CVE-2023-50976

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

9.8CVSS6.9AI score0.00987EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-34868

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00594EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-55703

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00987EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-28634

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00266EPSS

Exploits1References1

Chainguard•added 2025/08/09 1:17 p.m.•9 views

GHSA-J5PM-7495-QMR3 vulnerabilities

Vulnerabilities for packages: aws-flb-kinesis-fips, aws-flb-firehose, skaffold-fips, kyverno, authservice, witness, git-credential-oauth, wavefront-collector-for-kubernetes, aws-sigv4-proxy, prometheus-pushgateway-fips, mattermost, rancher-agent, nova, kubernetes-replicator-fips, kiali, apm-serve...

5.8AI score

Exploits0

RedhatCVE•added 2025/05/23 2:34 a.m.•4 views

CVE-2023-30450

rpk in Redpanda before 23.1.2 mishandles the redpanda.rpcservertls field, leading to for example situations in which there is a data type mismatch that cannot be automatically fixed by rpk, and instead a user must reconfigure while a cluster is turned off in order to have TLS on broker RPC ports...

4.3CVSS6.8AI score0.00594EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:56 a.m.•5 views

CVE-2023-24619

Redpanda before 22.3.12 discloses cleartext AWS credentials. The import functionality in the rpk binary logs an AWS Access Key ID and Secret in cleartext to standard output, allowing a local user to view the key in the console, or in Kubernetes logs if stdout output is collected. The fixed versio...

5.5CVSS6.6AI score0.00266EPSS

Exploits1References1

NVD•added 2023/12/18 12:15 a.m.•11 views

CVE-2023-50976

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

9.8CVSS0.00987EPSS

Exploits1References5

OSV•added 2023/12/18 12:15 a.m.•3 views

CVE-2023-50976

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

9.8CVSS6.9AI score

Exploits0References5

Prion•added 2023/12/18 12:15 a.m.•16 views

Authorization

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

7.5CVSS7.2AI score0.00987EPSS

Exploits1References5Affected Software1

CNNVD•added 2023/12/18 12:0 a.m.•2 views

Redpanda Security Vulnerabilities

Redpanda is a streaming data platform for developers. It is compatible with the Kafka API. Redpanda has a security vulnerability that stems from a lack of authorization checks in the Transactions API. Affected products and versions: Redpanda versions before 23.1.21, 23.2.x versions before 23.2.18...

9.8CVSS6.8AI score0.00987EPSS

Exploits1References7

Cvelist•added 2023/12/17 12:0 a.m.•14 views

CVE-2023-50976

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API...

9.7AI score0.00987EPSS

Exploits1References5

Positive Technologies•added 2023/12/17 12:0 a.m.•2 views

PT-2023-31716 · Redpanda · Redpanda

Name of the Vulnerable Software and Affected Versions: Redpanda versions prior to 23.1.21 Redpanda versions 23.2.x prior to 23.2.18 Description: The issue is related to missing authorization checks in the "Transactions API". This could potentially allow unauthorized access or actions...

9.8CVSS9.2AI score0.00987EPSS

Exploits1References9