5134 matches found
CVE-2026-53150 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-aws, linux-gcp, linux-vmware, linux-azure...
CVE-2026-45850 vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-aws, linux-gcp, linux-vmware, linux-azure...
CVE-2026-56140
Improper Input Validation vulnerability in Apache Camel AWS SNS component. The camel-aws2-sns component filters Camel headers through a component-specific HeaderFilterStrategy, Sns2HeaderFilterStrategy. Like the sibling Sqs2HeaderFilterStrategy, it originally configured only an outbound filter...
CVE-2026-46590
Deserialization of Untrusted Data vulnerability in Apache Camel PQC component. The camel-pqc component persists post-quantum key metadata KeyMetadata through pluggable KeyLifecycleManager implementations. HashicorpVaultKeyLifecycleManager and AwsSecretsManagerKeyLifecycleManager read that metadat...
CVE-2026-43867
Deserialization of Untrusted Data vulnerability in Apache Camel PQC Component. The camel-pqc component persists post-quantum key metadata KeyMetadata through pluggable KeyLifecycleManager implementations. AwsSecretsManagerKeyLifecycleManager.deserializeMetadata reads that metadata back from the...
CVE-2026-46456
Improper Input Validation vulnerability in Apache Camel AWS2-SQS Component. The camel-aws2-sqs component map inbound message attributes into the Camel Exchange through a component-specific HeaderFilterStrategy. Sqs2HeaderFilterStrategy configured only an outbound filter setOutFilterPattern, which...
CVE-2026-43867
The CVE concerns Apache Camel’s PQC component where AwsSecretsManagerKeyLifecycleManager.deserializeMetadata() Base64-decodes and deserializes persisted KeyMetadata via a raw java.io.ObjectInputStream.readObject() without an ObjectInputFilter or class allow-list. A user who can write to the confi...
CVE-2026-46456
Improper Input Validation vulnerability in Apache Camel AWS2-SQS Component. The camel-aws2-sqs component map inbound message attributes into the Camel Exchange through a component-specific HeaderFilterStrategy. Sqs2HeaderFilterStrategy configured only an outbound filter setOutFilterPattern, which...
CVE-2026-54430
A flaw was found in liboauth2 in the oauth2josejwksawsalbresolve function. The AWS ALB JWT verifier reads the signer and kid fields from the unverified JWT header. When signer matches the configured ARN, kid is appended to the ALB base URL without path sanitization, and an HTTP GET request is...
GHSA-VH4V-2XQ2-G5CG vulnerabilities
Vulnerabilities for packages: k9s-fips, cert-manager-cmctl-fips, kube-arangodb, ocm-kubernetes-controller-fips, tigera-operator-fips, ocm-cli, trivy-operator-fips, helm-exporter, rancher-agent, drone, kgateway, headlamp-fips, cloudbeat, kube-mgmt, kyverno-notation-aws, kargo, argocd-image-updater...
CVE-2026-50162 vulnerabilities
Vulnerabilities for packages: k9s-fips, cert-manager-cmctl-fips, kube-arangodb, ocm-kubernetes-controller-fips, tigera-operator-fips, ocm-cli, trivy-operator-fips, helm-exporter, rancher-agent, drone, kgateway, headlamp-fips, cloudbeat, kube-mgmt, kyverno-notation-aws, kargo, argocd-image-updater...
GHSA-JXPM-75MH-9FP7 vulnerabilities
Vulnerabilities for packages: k9s-fips, cert-manager-cmctl-fips, kube-arangodb, ocm-kubernetes-controller-fips, tigera-operator-fips, ocm-cli, trivy-operator-fips, helm-exporter, rancher-agent, drone, kgateway, headlamp-fips, cloudbeat, kube-mgmt, kyverno-notation-aws, kargo, argocd-image-updater...
CVE-2026-50151 vulnerabilities
Vulnerabilities for packages: k9s-fips, cert-manager-cmctl-fips, kube-arangodb, ocm-kubernetes-controller-fips, tigera-operator-fips, ocm-cli, trivy-operator-fips, helm-exporter, rancher-agent, drone, kgateway, headlamp-fips, cloudbeat, kube-mgmt, kyverno-notation-aws, kargo, argocd-image-updater...
GHSA-JXPM-75MH-9FP7 vulnerabilities
Vulnerabilities for packages: kots, kyverno, tigera-operator, argocd-image-updater, gogatekeeper, consul-k8s, gitness, helm-mapkubeapis, kube-arangodb, kubescape-operator, trivy, helm-operator, xeol, kyverno-notation-aws, oras, falcoctl, cilium-cli, manifest-tool, chartmuseum, kubescape, argo-cd,...
CVE-2026-50162 vulnerabilities
Vulnerabilities for packages: kots, kyverno, tigera-operator, argocd-image-updater, gogatekeeper, consul-k8s, gitness, helm-mapkubeapis, kube-arangodb, kubescape-operator, trivy, helm-operator, xeol, kyverno-notation-aws, oras, falcoctl, cilium-cli, manifest-tool, chartmuseum, kubescape, argo-cd,...
GHSA-8XWF-RJM4-XVHV vulnerabilities
Vulnerabilities for packages: kots, kyverno, tigera-operator, argocd-image-updater, gogatekeeper, consul-k8s, gitness, helm-mapkubeapis, kube-arangodb, kubescape-operator, trivy, helm-operator, xeol, kyverno-notation-aws, oras, falcoctl, cilium-cli, manifest-tool, chartmuseum, kubescape, argo-cd,...
CVE-2026-50151 vulnerabilities
Vulnerabilities for packages: kots, kyverno, tigera-operator, argocd-image-updater, gogatekeeper, consul-k8s, gitness, helm-mapkubeapis, kube-arangodb, kubescape-operator, trivy, helm-operator, xeol, kyverno-notation-aws, oras, falcoctl, cilium-cli, manifest-tool, chartmuseum, kubescape, argo-cd,...
GHSA-VH4V-2XQ2-G5CG vulnerabilities
Vulnerabilities for packages: kots, kyverno, tigera-operator, argocd-image-updater, gogatekeeper, consul-k8s, gitness, helm-mapkubeapis, kube-arangodb, kubescape-operator, trivy, helm-operator, xeol, kyverno-notation-aws, oras, falcoctl, cilium-cli, manifest-tool, chartmuseum, kubescape, argo-cd,...
GHSA-XF85-363P-868W vulnerabilities
Vulnerabilities for packages: kots, kyverno, tigera-operator, argocd-image-updater, gogatekeeper, consul-k8s, gitness, helm-mapkubeapis, kube-arangodb, kubescape-operator, trivy, helm-operator, xeol, kyverno-notation-aws, oras, falcoctl, cilium-cli, manifest-tool, chartmuseum, kubescape, argo-cd,...
CVE-2026-48978 vulnerabilities
Vulnerabilities for packages: kots, kyverno, tigera-operator, argocd-image-updater, gogatekeeper, consul-k8s, gitness, helm-mapkubeapis, kube-arangodb, kubescape-operator, trivy, helm-operator, xeol, kyverno-notation-aws, oras, falcoctl, cilium-cli, manifest-tool, chartmuseum, kubescape, argo-cd,...