Lucene search
+L

45 matches found

Chainguard
Chainguard
added 2026/06/23 8:16 a.m.12 views

CVE-2026-41178 vulnerabilities

Vulnerabilities for packages: fulcio, telegraf, flux-fips, terraform-provider-acme, crossplane-provider-azure-relay, kueue-fips, cloud-provider-azure, crossplane-provider-azure-operationsmanagement, crossplane-provider-aws-sesv2-fips, osv-scanner, crossplane-provider-azure-servicelinker,...

5.3CVSS5.1AI score0.00237EPSS
Exploits0
Amazon
Amazon
added 2026/05/26 12:0 a.m.28 views

Important: amazon-cloudwatch-agent

Issue Overview: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in the Go compiler cmd/compile. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption in programs compiled with...

9.8CVSS7.1AI score0.01163EPSS
Exploits1
OSV
OSV
added 2026/05/20 5:15 a.m.9 views

CLEANSTART-2026-GA28186 Security fixes for CVE-2026-41602 applied in versions: 1.300066.1-r0

Security vulnerability affects the amazon-cloudwatch-agent package. This issue is resolved in later releases. See references for vulnerability details...

7.5CVSS5.8AI score0.01163EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.13 views

PT-2026-38516

These are all security issues fixed in the amazon-cloudwatch-agent-1.300066.1-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.01163EPSS
Exploits0References2
OSV
OSV
added 2026/05/06 12:0 a.m.7 views

OPENSUSE-SU-2026:10699-1 amazon-cloudwatch-agent-1.300066.1-1.1 on GA media

These are all security issues fixed in the amazon-cloudwatch-agent-1.300066.1-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.01163EPSS
Exploits0References1
Wolfi
Wolfi
added 2026/04/25 1:49 p.m.8 views

GHSA-MH2Q-Q3FH-2475 vulnerabilities

Vulnerabilities for packages: crossplane-provider-azure-sql, grafana-agent-operator, metallb, grafana-pyroscope, crossplane-provider-aws-sns, knative-client, slsa-verifier, buildah, act, argo-events, docker-machine-driver-harvester, nuclei, gatus, flux-image-reflector-controller,...

5.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.11 views

Amazon Linux 2 : amazon-cloudwatch-agent, --advisory ALAS2-2026-3248 (ALAS-2026-3248)

"The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300064.2-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3248 advisory. url.Parse insufficiently validated the host/authority component and accepted some invalid URLs...

9.1CVSS6AI score0.01557EPSS
Exploits1References10
Chainguard
Chainguard
added 2026/04/11 2:18 a.m.15 views

CVE-2026-32283 vulnerabilities

Vulnerabilities for packages: grafana-rollout-operator, telegraf, flux-fips, k3d, kyverno-policy-reporter-plugins-trivy-fips, newrelic-fluent-bit-output, flux-source-watcher, kubernetes-dashboard-metrics-scraper-fips, helm, cloud-provider-azure, cert-exporter, crane, mountpoint-s3-csi-driver,...

7.5CVSS7.2AI score0.00621EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/28 12:0 a.m.14 views

amazon-cloudwatch-agent-1.300064.0-2.1 on GA media (moderate)

amazon-cloudwatch-agent-1.300064.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10420-1 Rating: moderate Cross-References: CVE-2026-33186 CVSS scores: CVE-2026-33186 SUSE : 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N CVE-2026-33186 SUSE : 8.6...

8.6CVSS5.9AI score0.01557EPSS
Exploits1
Amazon
Amazon
added 2026/03/27 12:0 a.m.10 views

Medium: amazon-cloudwatch-agent

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

10CVSS7.1AI score0.01945EPSS
Exploits2
Amazon
Amazon
added 2026/03/19 12:0 a.m.18 views

Medium: amazon-cloudwatch-agent

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

10CVSS7.1AI score0.01945EPSS
Exploits2
Amazon
Amazon
added 2026/02/19 12:0 a.m.12 views

Low: amazon-cloudwatch-agent

Issue Overview: No CVE associated with this advisory Affected Packages: amazon-cloudwatch-agent Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction: Run yum update...

7.8CVSS7.6AI score0.00532EPSS
Exploits0
Amazon
Amazon
added 2026/02/18 12:0 a.m.7 views

Low: amazon-cloudwatch-agent

Issue Overview: No CVE associated with this advisory Affected Packages: amazon-cloudwatch-agent Issue Correction: Run dnf update amazon-cloudwatch-agent --releasever 2023.10.20260216 or dnf update --advisory ALAS2023-2026-1442 --releasever 2023.10.20260216 to update your system. More information ...

7.8CVSS7.5AI score0.00532EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.9 views

CVE-2025-61726 vulnerabilities

Vulnerabilities for packages: crossplane-provider-azure-sql, kube-bench, kubernetes-dashboard, octo-sts, bank-vaults, crossplane-provider-aws-sns, sftpgo-plugin-pubsub, dkron, golangci-lint, gcp-compute-persistent-disk-csi-driver, openbao-k8s, grpcurl, gptscript, cosign, cluster-api,...

7.5CVSS7AI score0.01945EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.6 views

GHSA-XVQR-69V8-F3GV vulnerabilities

Vulnerabilities for packages: golangci-lint, gcp-compute-persistent-disk-csi-driver, slsa-verifier, terraform-provider-pagerduty, mockgen, kubernetes-dashboard-metrics-scraper, kubecolor, cilium-cli, juicefs, kine, sftpgo-plugin-geoipfilter, aws-sigv4-proxy, spire-server, metacontroller,...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.9 views

GHSA-GR56-3GP6-6GMJ vulnerabilities

Vulnerabilities for packages: crossplane-provider-azure-sql, kube-bench, kubernetes-dashboard, octo-sts, bank-vaults, crossplane-provider-aws-sns, sftpgo-plugin-pubsub, dkron, golangci-lint, cfssl, gcp-compute-persistent-disk-csi-driver, openbao-k8s, grpcurl, gptscript, cosign, cluster-api,...

5.3AI score
Exploits0
Amazon
Amazon
added 2025/10/14 12:0 a.m.7 views

Medium: amazon-cloudwatch-agent

Issue Overview: go-viper's mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data CVE-2025-11065 Affected Packages: amazon-cloudwatch-agent Issue Correction: Run dnf update amazon-cloudwatch-agent --releasever 2023.9.20251014 or dnf update --advisory ALAS2023-2025-1224...

5.3CVSS6.8AI score0.00357EPSS
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-7662

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00482EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.4 views

Amazon Linux 2 : amazon-cloudwatch-agent (ALAS-2025-2904)

The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300055.3-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2904 advisory. The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus...

7.5CVSS7.5AI score0.0056EPSS
Exploits0References8
Amazon
Amazon
added 2025/06/24 12:0 a.m.5 views

Medium: amazon-cloudwatch-agent

Issue Overview: The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character / as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result i...

7.5CVSS7.1AI score0.0056EPSS
Exploits0
Rows per page
Query Builder