36 matches found
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: guac, glab, crossplane-provider-azure-storage, tflint, terraform-provider-tls, cluster-api-azure-controller, ko, step, opentelemetry-collector, pulumi-language-yaml, cloud-provider-aws, spire-server, kaf, mods, nfpm, ksops, go-discover, tekton-chains,...
GHSA-CG87-VWWH-XVGJ vulnerabilities
Vulnerabilities for packages: flux, glab, kubernetes-dashboard, crossplane-provider-azure-storage, argo-cd, minio, hubble, step, opentelemetry-collector, helm, kots, ingress-nginx-controller, prometheus-operator, karpenter, kubernetes, kyverno, zot, prometheus, crossplane-provider-aws-elasticache...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: flux, glab, kubernetes-dashboard, crossplane-provider-azure-storage, argo-cd, minio, hubble, step, opentelemetry-collector, helm, kots, ingress-nginx-controller, prometheus-operator, karpenter, kubernetes, kyverno, zot, prometheus, crossplane-provider-aws-elasticache...
CVE-2026-27136 vulnerabilities
Vulnerabilities for packages: flux, glab, kubernetes-dashboard, crossplane-provider-azure-storage, argo-cd, minio, hubble, step, opentelemetry-collector, helm, kots, ingress-nginx-controller, prometheus-operator, karpenter, kubernetes, kyverno, zot, prometheus, crossplane-provider-aws-elasticache...
CVE-2026-25681 vulnerabilities
Vulnerabilities for packages: flux, glab, kubernetes-dashboard, crossplane-provider-azure-storage, argo-cd, minio, hubble, step, opentelemetry-collector, helm, kots, ingress-nginx-controller, prometheus-operator, karpenter, kubernetes, kyverno, zot, prometheus, crossplane-provider-aws-elasticache...
CVE-2026-25680 vulnerabilities
Vulnerabilities for packages: flux, glab, kubernetes-dashboard, crossplane-provider-azure-storage, argo-cd, minio, hubble, step, opentelemetry-collector, helm, kots, ingress-nginx-controller, prometheus-operator, karpenter, kubernetes, kyverno, zot, prometheus, crossplane-provider-aws-elasticache...
GHSA-W9P8-PVXH-RXPJ vulnerabilities
Vulnerabilities for packages: flux, glab, kubernetes-dashboard, crossplane-provider-azure-storage, argo-cd, minio, hubble, step, opentelemetry-collector, helm, kots, ingress-nginx-controller, prometheus-operator, karpenter, kubernetes, kyverno, zot, prometheus, crossplane-provider-aws-elasticache...
GHSA-WRH2-89VG-4J9G vulnerabilities
Vulnerabilities for packages: flux, glab, kubernetes-dashboard, crossplane-provider-azure-storage, argo-cd, minio, hubble, step, opentelemetry-collector, helm, kots, ingress-nginx-controller, prometheus-operator, karpenter, kubernetes, kyverno, zot, prometheus, crossplane-provider-aws-elasticache...
GHSA-M9X8-M34X-FJ9Q vulnerabilities
Vulnerabilities for packages: flux, glab, kubernetes-dashboard, crossplane-provider-azure-storage, argo-cd, minio, hubble, step, opentelemetry-collector, helm, kots, ingress-nginx-controller, prometheus-operator, karpenter, kubernetes, kyverno, zot, prometheus, crossplane-provider-aws-elasticache...
CVE-2026-41889 vulnerabilities
Vulnerabilities for packages: authentik-fips, cloudnative-pg-fips, gitlab-kas-fips, timescaledb-parallel-copy, dapr-fips, ldap2pg, migrate, cerbos, kube-bench-fips, opentelemetry-collector-contrib-fips, gitness, envoy-gateway, cloudprober, openfga-fips, argo-workflows, trillian-fips, spire-server...
CVE-2026-32289 vulnerabilities
Vulnerabilities for packages: kpt, prometheus-blackbox-exporter, bank-vaults, aws-efs-csi-driver, crossplane-provider-keycloak, crossplane-provider-azure-storage, kube-fluentd-operator, falco-no-driver, dbmate, helm-mapkubeapis, terraform-provider-tls, grafana-agent-operator, kube-vip, ko,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: kpt, prometheus-blackbox-exporter, bank-vaults, aws-efs-csi-driver, crossplane-provider-keycloak, crossplane-provider-azure-storage, kube-fluentd-operator, falco-no-driver, dbmate, helm-mapkubeapis, terraform-provider-tls, grafana-agent-operator, kube-vip, ko,...
CLEANSTART-2026-CV29689 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-25793, CVE-2026-30836 applied in versions: 0.10.2-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-CE02533 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.1-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-UZ79996 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.0-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-30836 vulnerabilities
Vulnerabilities for packages: caddy, step-ca-fips, frankenphp-8.4, caddy-fips, frankenphp-8.5, frankenphp-8.3, frankenphp-8.2, step-issuer-fips...
GHSA-Q4R8-XM5F-56GW vulnerabilities
Vulnerabilities for packages: caddy, step-ca-fips, frankenphp-8.4, caddy-fips, frankenphp-8.5, frankenphp-8.3, frankenphp-8.2, step-issuer-fips...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: gitlab-pages-fips, tempo-fips, gitlab-runner-fips, crossplane-provider-family-aws, omni, dex-fips, nova, pluto, crossplane-provider-aws-rolesanywhere, traefik, flux-operator-fips, melange, cluster-api-azure-controller, cloud-sql-proxy,...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: gitlab-pages-fips, tempo-fips, gitlab-runner-fips, crossplane-provider-family-aws, omni, dex-fips, nova, pluto, crossplane-provider-aws-rolesanywhere, traefik, flux-operator-fips, melange, cluster-api-azure-controller, cloud-sql-proxy,...
GHSA-FW7P-63QQ-7HPR vulnerabilities
Vulnerabilities for packages: db-operator, openfga, step-ca, ratify, dbmate, croc, loki, mattermost, temporal, timestamp-authority, minio, juicefs, splunk-otel-collector, kyverno-policy-reporter, jitsucom-bulker, step, grafana-alloy, mariadb-operator, apko, kots, spire-server, wolfictl,...