35 matches found
GHSA-WRH2-89VG-4J9G vulnerabilities
Vulnerabilities for packages: kine, snyk-cli, crossplane-provider-azure-storage, gitea, traefik, opentelemetry-collector, istio, minio, telegraf, crossplane-provider-aws-elasticache, grafana-pyroscope, argo-cd, nerdctl, zot, hubble, k3s, vitess, kubernetes, cilium, hydra, gptscript,...
GHSA-W9P8-PVXH-RXPJ vulnerabilities
Vulnerabilities for packages: kine, snyk-cli, crossplane-provider-azure-storage, gitea, traefik, opentelemetry-collector, istio, minio, telegraf, crossplane-provider-aws-elasticache, grafana-pyroscope, argo-cd, nerdctl, zot, hubble, k3s, vitess, kubernetes, cilium, hydra, gptscript,...
GHSA-M9X8-M34X-FJ9Q vulnerabilities
Vulnerabilities for packages: kine, snyk-cli, crossplane-provider-azure-storage, gitea, traefik, opentelemetry-collector, istio, minio, telegraf, crossplane-provider-aws-elasticache, grafana-pyroscope, argo-cd, nerdctl, zot, hubble, k3s, vitess, kubernetes, cilium, hydra, gptscript,...
GHSA-CG87-VWWH-XVGJ vulnerabilities
Vulnerabilities for packages: kine, snyk-cli, crossplane-provider-azure-storage, gitea, traefik, opentelemetry-collector, istio, minio, telegraf, crossplane-provider-aws-elasticache, grafana-pyroscope, argo-cd, nerdctl, zot, hubble, k3s, vitess, kubernetes, cilium, hydra, gptscript,...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: kine, snyk-cli, crossplane-provider-azure-storage, gitea, traefik, opentelemetry-collector, istio, minio, telegraf, crossplane-provider-aws-elasticache, grafana-pyroscope, argo-cd, nerdctl, zot, hubble, k3s, vitess, kubernetes, cilium, hydra, gptscript,...
CVE-2026-25680 vulnerabilities
Vulnerabilities for packages: kine, snyk-cli, crossplane-provider-azure-storage, gitea, traefik, opentelemetry-collector, istio, minio, telegraf, crossplane-provider-aws-elasticache, grafana-pyroscope, argo-cd, nerdctl, zot, hubble, k3s, vitess, kubernetes, cilium, hydra, gptscript,...
CVE-2026-27136 vulnerabilities
Vulnerabilities for packages: kine, snyk-cli, crossplane-provider-azure-storage, gitea, traefik, opentelemetry-collector, istio, minio, telegraf, crossplane-provider-aws-elasticache, grafana-pyroscope, argo-cd, nerdctl, zot, hubble, k3s, vitess, kubernetes, cilium, hydra, gptscript,...
CVE-2026-25681 vulnerabilities
Vulnerabilities for packages: kine, snyk-cli, crossplane-provider-azure-storage, gitea, traefik, opentelemetry-collector, istio, minio, telegraf, crossplane-provider-aws-elasticache, grafana-pyroscope, argo-cd, nerdctl, zot, hubble, k3s, vitess, kubernetes, cilium, hydra, gptscript,...
CVE-2026-41889 vulnerabilities
Vulnerabilities for packages: ldap2pg, gitaly-fips, falcosidekick-fips, pgtimetable, jitsucom-bulker, certificate-transparency, gitlab-cng, teleport, rke2-cloud-provider-fips, openbao-fips, wal-g, kuma, kine, spire-server-fips, grafana-fips, sftpgo-plugin-eventsearch, spicedb, argo-workflows-fips...
CVE-2026-32289 vulnerabilities
Vulnerabilities for packages: spire-server, verticadb-operator, dbmate, temporal-ui-server, secrets-store-csi-driver-provider-azure, step-kms-plugin, cert-manager, modelmesh-runtime-adapter, polaris, cosign, policy-controller, helm-mapkubeapis, envoy-ratelimit, rancher, aws-flb-cloudwatch,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: spire-server, verticadb-operator, dbmate, temporal-ui-server, secrets-store-csi-driver-provider-azure, step-kms-plugin, cert-manager, modelmesh-runtime-adapter, polaris, cosign, policy-controller, helm-mapkubeapis, envoy-ratelimit, rancher, aws-flb-cloudwatch,...
CLEANSTART-2026-CV29689 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-25793, CVE-2026-30836 applied in versions: 0.10.2-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-CE02533 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.1-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-UZ79996 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.0-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-30836 vulnerabilities
Vulnerabilities for packages: step-ca-fips, frankenphp-8.4, caddy-fips, frankenphp-8.5, frankenphp-8.2, caddy, frankenphp-8.3, step-issuer-fips...
GHSA-Q4R8-XM5F-56GW vulnerabilities
Vulnerabilities for packages: step-ca-fips, frankenphp-8.4, caddy-fips, frankenphp-8.5, frankenphp-8.2, caddy, frankenphp-8.3, step-issuer-fips...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-efs, opa, external-dns-fips, flux-source-watcher-fips, nemo, ollama, crossplane-provider-family-aws-fips, crossplane-provider-aws-lambda-fips, gitlab-cng, gpu-operator-fips, cloudbeat-fips, crossplane-provider-aws-eks, cg,...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-efs, opa, external-dns-fips, flux-source-watcher-fips, nemo, ollama, crossplane-provider-family-aws-fips, crossplane-provider-aws-lambda-fips, gitlab-cng, gpu-operator-fips, cloudbeat-fips, crossplane-provider-aws-eks, cg,...
GHSA-FW7P-63QQ-7HPR vulnerabilities
Vulnerabilities for packages: aactl, kine, spire-server, dex, dbmate, terragrunt, trufflehog, step-kms-plugin, flux-kustomize-controller, dgraph, temporal, trillian, ksops, seaweedfs, gitea, sftpgo-plugin-eventstore, sops, tailscale, croc, cerbos, rekor, sqlexporter, grafana-alloy, minio,...
CVE-2026-25518 vulnerabilities
Vulnerabilities for packages: step-issuer, percona-server-mongodb-operator-fips, opentelemetry-operator-fips, cert-manager-webhook-pdns-fips, cert-manager-istio-csr, gitlab-operator, aws-privateca-issuer-fips, cert-manager-csi-driver, aws-privateca-issuer, cert-manager-openshift-routes,...