Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

35 matches found

Chainguard
Chainguardadded 2026/05/06 7:17 p.m.4 views

CVE-2026-41907 vulnerabilities

Vulnerabilities for packages: saf, redisinsight, librechat, kubeflow-pipelines, kubeflow-centraldashboard, opensearch-dashboards, wazuh-dashboard, kibana, dbgate-fips, prism, langfuse-fips, gemini-cli, opensearch-dashboards-fips, argo-workflows, renovate, npm, code-server, sqlpad,...

9.3CVSS5.8AI score0.00014EPSS
Exploits1
Wolfi
Wolfiadded 2026/04/11 2:51 a.m.6 views

GHSA-FV83-X2XW-2J55 vulnerabilities

Vulnerabilities for packages: apko, karpenter, clickhouse-operator, grafana-operator, temporal, flux-image-automation-controller, aws-load-balancer-controller, github-mcp-server, secrets-store-csi-driver-provider-aws, grafana-rollout-operator, ingress-nginx-controller,...

5.8AI score
Exploits0
Wolfi
Wolfiadded 2026/04/11 2:51 a.m.5 views

CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: flannel, slsa-verifier, vexctl, postgres-operator, kargo, dataplaneapi, kine, falco-no-driver, terraform-provider-azapi, aws-flb-kinesis, polaris, bazelisk, aws-sigv4-proxy, kots, nri-nginx, knative-eventing, prometheus, kubernetes-dashboard-metrics-scraper,...

7.5CVSS7.1AI score0.00022EPSS
Exploits0
Chainguard
Chainguardadded 2026/02/26 7:17 p.m.5 views

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: flux-source-controller-fips, helm-push, zot, argocd-image-updater, extism, crossplane-provider-aws-kms, trivy-fips, skaffold, omni, boring-registry, rancher-fleet, flux-helm-controller-fips, q, terraform, vcluster, helm-diff-fips, apko,...

9.8CVSS7.3AI score0.00026EPSS
Exploits0
Chainguard
Chainguardadded 2026/02/05 7:17 p.m.3 views

CVE-2026-25547 vulnerabilities

Vulnerabilities for packages: pulumi, renovate, npm, librechat, node-gyp, actions-runner, lerna, sqlpad...

9.2CVSS6.8AI score0.0002EPSS
Exploits0
Wolfi
Wolfiadded 2025/12/04 7:47 p.m.4 views

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: gops, slsa-verifier, postgres-operator, grafana-alloy, kube-rbac-proxy, kargo, kine, falco-no-driver, polaris, prometheus-alertmanager, kots, nri-nginx, op-geth, knative-eventing, prometheus, kubernetes-dashboard-metrics-scraper, splunk-otel-collector, opencost,...

7.5CVSS7.2AI score0.00019EPSS
Exploits2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-49076

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00192EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-27053

Malicious code in bioql PyPI...

9.9CVSS6.5AI score0.00614EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-6988

Malicious code in bioql PyPI...

9.9CVSS9AI score0.0095EPSS
Exploits0References5
OSV
OSVadded 2025/09/01 9:47 a.m.1 views

MAL-2025-46892 Malicious code in actions-runner-admin (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8bf5c8993e97e4a8a3f91ab4b6b7618dc0f73864793854b4458516ece843a6db The OpenSSF Package Analysis project identified 'actions-runner-admin' @ 99.99.99 rubygems as malicious. It is considered malicious because: - T...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/09/01 9:47 a.m.4 views

Malicious code in actions-runner-admin (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8bf5c8993e97e4a8a3f91ab4b6b7618dc0f73864793854b4458516ece843a6db The OpenSSF Package Analysis project identified 'actions-runner-admin' @ 99.99.99 rubygems as malicious. It is considered malicious because: - T...

7.2AI score
Exploits0
Wolfi
Wolfiadded 2025/04/17 1:44 p.m.19 views

GHSA-VVGC-356P-C3XW vulnerabilities

Vulnerabilities for packages: slsa-verifier, vexctl, crossplane-provider-aws-kinesis, postgres-operator, grafana-alloy, kube-rbac-proxy, kargo, terraform-provider-azapi, prometheus-alertmanager, kots, docker, op-geth, prometheus, kubernetes-dashboard-metrics-scraper, argo-events,...

5.8AI score
Exploits0
Wolfi
Wolfiadded 2025/04/17 1:44 p.m.24 views

CVE-2025-22872 vulnerabilities

Vulnerabilities for packages: slsa-verifier, vexctl, crossplane-provider-aws-kinesis, postgres-operator, grafana-alloy, kube-rbac-proxy, kargo, terraform-provider-azapi, prometheus-alertmanager, kots, docker, op-geth, prometheus, kubernetes-dashboard-metrics-scraper, argo-events,...

6.5CVSS6.8AI score0.00017EPSS
Exploits0
Wolfi
Wolfiadded 2025/04/10 1:44 p.m.24 views

CVE-2025-22871 vulnerabilities

Vulnerabilities for packages: slsa-verifier, vexctl, postgres-operator, kube-rbac-proxy, dataplaneapi, kyverno-policy-reporter, terraform-provider-azapi, aws-flb-kinesis, wire-go, prometheus-alertmanager, bazelisk, nri-nginx, prometheus, kubernetes-dashboard-metrics-scraper, kyverno-notation-aws,...

9.1CVSS6.8AI score0.00302EPSS
Exploits0
Wolfi
Wolfiadded 2025/04/10 1:44 p.m.10 views

GHSA-G9PC-8G42-G6VQ vulnerabilities

Vulnerabilities for packages: slsa-verifier, vexctl, postgres-operator, kube-rbac-proxy, dataplaneapi, kyverno-policy-reporter, terraform-provider-azapi, aws-flb-kinesis, wire-go, prometheus-alertmanager, bazelisk, nri-nginx, prometheus, kubernetes-dashboard-metrics-scraper, kyverno-notation-aws,...

5.8AI score
Exploits0
Wolfi
Wolfiadded 2025/03/22 4:43 p.m.44 views

CVE-2025-30204 vulnerabilities

Vulnerabilities for packages: vexctl, xeol, argo-rollouts, crossplane-provider-azure-authorization, grafana-alloy, kargo, kaniko, step-ca, kine, terraform-provider-azapi, zot, restic, actions-runner-controller, fulcio, crossplane-provider-azure-managedidentity, kots, docker, tekton-chains, op-get...

7.5CVSS6.8AI score0.00083EPSS
Exploits0
Wolfi
Wolfiadded 2025/02/25 3:16 p.m.11 views

GHSA-7WRW-R4P8-38RX vulnerabilities

Vulnerabilities for packages: gops, flannel, slsa-verifier, vexctl, postgres-operator, kube-rbac-proxy, dataplaneapi, aws-flb-kinesis, wire-go, prometheus-alertmanager, bazelisk, nri-nginx, kubernetes-dashboard-metrics-scraper, argo-events, mockgen, splunk-otel-collector, vertical-pod-autoscaler,...

5.8AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/02/05 7:32 p.m.8 views

CVE-2022-39321

GitHub Actions Runner is the application that runs a job from a GitHub Actions workflow. The actions runner invokes the docker cli directly in order to run job containers, service containers, or container actions. A bug in the logic for how the environment is encoded into these docker commands wa...

9.9CVSS7AI score0.0095EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/30 2:59 p.m.27 views

CVE-2024-3924 Code Injection in huggingface/text-generation-inference

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.headref user input, which is used to dynamically construct a command for installing ...

4.4CVSS7.8AI score0.00369EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/05/30 2:59 p.m.17 views

CVE-2024-3924 Code Injection in huggingface/text-generation-inference

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.headref user input, which is used to dynamically construct a command for installing ...

4.4CVSS5.3AI score0.00369EPSS
Exploits0References2
Rows per page
Query Builder