36 matches found
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: snyk-cli, chisel, pulumi-language-yaml, terragrunt, ksops, gomplate, wolfictl, caddy, fulcio, vault-benchmark, telegraf, cosign, dagger, witness, podman, pulumi-language-java, helm, kots, step-issuer, prometheus, crossplane-provider-azure-authorization, gh,...
GHSA-WRH2-89VG-4J9G vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
CVE-2026-25680 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
GHSA-M9X8-M34X-FJ9Q vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
GHSA-CG87-VWWH-XVGJ vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
GHSA-W9P8-PVXH-RXPJ vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
CVE-2026-27136 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
CVE-2026-25681 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
CVE-2026-41889 vulnerabilities
Vulnerabilities for packages: harbor, pgwatch, opentelemetry-collector-contrib, step-fips, gotrue-fips, spire-server, temporal-server-fips, cloudprober, azure-service-operator-fips, certificate-transparency-fips, temporal-server, jitsucom-bulker, rke2-cloud-provider, azure-service-operator, kots,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: gcp-compute-persistent-disk-csi-driver, grpcurl, kube-vip, lazydocker, modelmesh-runtime-adapter, sftpgo-plugin-geoipfilter, pulumi-language-yaml, snyk-cli, rancher-fleet, sriov-network-device-plugin, xeol, certificate-transparency, k8ssandra-operator, caddy,...
CVE-2026-32289 vulnerabilities
Vulnerabilities for packages: gcp-compute-persistent-disk-csi-driver, grpcurl, kube-vip, lazydocker, modelmesh-runtime-adapter, sftpgo-plugin-geoipfilter, pulumi-language-yaml, snyk-cli, rancher-fleet, sriov-network-device-plugin, xeol, certificate-transparency, k8ssandra-operator, caddy,...
CLEANSTART-2026-CV29689 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-25793, CVE-2026-30836 applied in versions: 0.10.2-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-CE02533 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.1-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-UZ79996 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.0-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-Q4R8-XM5F-56GW vulnerabilities
Vulnerabilities for packages: frankenphp-8.5, frankenphp-8.3, caddy-fips, frankenphp-8.2, caddy, frankenphp-8.4, step-ca-fips, step-issuer-fips...
CVE-2026-30836 vulnerabilities
Vulnerabilities for packages: frankenphp-8.5, frankenphp-8.3, caddy-fips, frankenphp-8.2, caddy, frankenphp-8.4, step-ca-fips, step-issuer-fips...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-acm, harbor, opentelemetry-collector-contrib, crossplane-provider-aws-memorydb, cert-manager-webhook-pdns-fips, seaweedfs-operator, crossplane-provider-aws-elasticache-fips, contour-fips, ollama, aws-ebs-csi-driver,...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-acm, harbor, opentelemetry-collector-contrib, crossplane-provider-aws-memorydb, cert-manager-webhook-pdns-fips, seaweedfs-operator, crossplane-provider-aws-elasticache-fips, contour-fips, ollama, aws-ebs-csi-driver,...
GHSA-FW7P-63QQ-7HPR vulnerabilities
Vulnerabilities for packages: db-operator, temporal-server, trufflehog, croc, terragrunt, envoy-gateway, spire-server, spicedb, seaweedfs, certificate-transparency, ksops, nuclei, wolfictl, age, step-ca, nri-mysql, caddy, minio, apko, juicefs, ratify, sftpgo-plugin-eventstore, sqlexporter,...