Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/06/10 12:0 a.m.9 views

Fission 安全漏洞

Fission is an open-source function deployment framework based on Kubernetes. Versions of Fission prior to 1.23.0 contain security vulnerabilities. These vulnerabilities stem from the runtime Pod using the fission-fetcher ServiceAccount and automatically mounting tokens. User function code can rea...

8.7CVSS5.4AI score0.00276EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/24 12:0 a.m.6 views

Kyverno 信息泄露漏洞

Kyverno is an open-source strategy engine designed for Kubernetes. Kyverno has a vulnerability related to information leakage, which stems from the apiCall function’s automatic attachment of ServiceAccount tokens, potentially causing the entire cluster to be compromised. The following versions ar...

9.1CVSS5.8AI score0.0056EPSS
Exploits1References1
NVD
NVDadded 2026/03/24 12:16 a.m.5 views

CVE-2026-33211

Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions 1.0.1, 1.3.3, 1.6.1, 1.9.2, and 1.10.2, the Tekton Pipelines git resolver is vulnerable to path traversal via the pathInRepo parameter. A tenant with permissi...

9.6CVSS0.00485EPSS
Exploits0References8
Cvelist
Cvelistadded 2026/03/23 11:55 p.m.23 views

CVE-2026-33211 Tekton Pipelines git resolver has path traversal that allows reading arbitrary files from the resolver pod

Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions 1.0.1, 1.3.3, 1.6.1, 1.9.2, and 1.10.2, the Tekton Pipelines git resolver is vulnerable to path traversal via the pathInRepo parameter. A tenant with permissi...

9.6CVSS0.00485EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-48861

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00932EPSS
Exploits0References2
OSV
OSVadded 2024/08/20 9:16 p.m.4 views

CVE-2024-43403 Kanister has a potential risk which can be leveraged to make a cluster-level privilege escalation

Kanister is a data protection workflow management tool. The kanister has a deployment called default-kanister-operator, which is bound with a ClusterRole called edit via ClusterRoleBinding. The "edit" ClusterRole is one of Kubernetes default-created ClusterRole, and it has the create/patch/udpate...

8.8CVSS7AI score0.00515EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/08/08 9:33 p.m.26 views

CVE-2024-7557 Odh-dashboard: odh-model-controller: cross-model authentication bypass in openshift ai

A vulnerability was found in OpenShift AI that allows for authentication bypass and privilege escalation across models within the same namespace. When deploying AI models, the UI provides the option to protect models with authentication. However, credentials from one model can be used to access...

8.8CVSS0.00932EPSS
Exploits0References3
Rows per page
Query Builder