3 matches found
CVE-2025-11065 affecting package kured for versions less than 1.14.2-7
CVE-2025-11065 affecting package kured for versions less than 1.14.2-7. A patched version of the package is available...
AZL-75500 CVE-2025-11065 affecting package kured for versions less than 1.14.2-7
A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in...
AZL-42910 CVE-2024-6104 affecting package skopeo for versions less than 1.14.2-7
go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7...