2501 matches found
CVE-2026-7492 Missing Authorization in GitLab
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.1 before 18.11.7, 19.0 before 19.0.4, and 19.1 before 19.1.2 that under certain conditions could have allowed an unauthenticated user to determine the existence of a private project due to improper authorization controls...
CVE-2026-40257
CVE-2026-40257 affects OP-TEE (Trusted Execution Environment) for Cortex-A with TrustZone. From versions 3.21.0 up to, but not including, 4.11.0, the ARM Crypto Extensions accelerated SHA-3 implementation has an off-by-one error that can cause a massive heap overflow, corrupting all TEE kernel me...
GHSA-Q675-QJ96-32M9 vulnerabilities
Vulnerabilities for packages: seaweedfs-rocksdb, seaweedfs-rocksdb-fips, seaweedfs, seaweedfs-fips, seaweedfs-operator-fips, gitlab-workhorse-ce, seaweedfs-operator...
GHSA-V62P-RQ8G-8H59 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-rails-ce...
CVE-2025-6547 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-rails-ce...
CVE-2025-6545 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-rails-ce...
GHSA-H7CP-R72F-JXH6 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-rails-ce...
GHSA-8452-54WP-RMV6 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips...
CVE-2025-8101 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips...
GHSA-95JQ-XPH2-CX9H vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: zarf-fips, harbor, osv-scanner, rancher, knative-eventing-fips, spire-server, k9s-fips, argocd-image-updater, vitess, trivy-fips, cloudbeat, mattermost, prometheus-mongodb-exporter, flux-image-automation-controller-fips, snyk-cli, coder, zot, kots, harbor-fips,...
GHSA-QPW4-5X99-6VJP vulnerabilities
Vulnerabilities for packages: packer-fips, zarf-fips, harbor, osv-scanner, rancher, knative-eventing-fips, spire-server, k9s-fips, argocd-image-updater, vitess, grype-db, pulumi-kubernetes-operator, docker-machine-driver-harvester, trivy-fips, rancher-machine, argo-events, apko, melange, cloudbea...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: harbor, rancher, knative-eventing-fips, spire-server, vitess, mattermost, prometheus-mongodb-exporter, snyk-cli, zot, kots, harbor-fips, podman-fips, minio, knative-kafka-broker-fips, fscrypt, commercial-expanso-edge, frankenphp-8.4, reports-server, containerd,...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: zarf-fips, harbor, osv-scanner, rancher, knative-eventing-fips, spire-server, k9s-fips, argocd-image-updater, vitess, docker-machine-driver-harvester, trivy-fips, cloudbeat, mattermost, prometheus-mongodb-exporter, flux-image-automation-controller-fips, snyk-cli,...
CVE-2026-5796 Incorrect Authorization in GitLab
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.6 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an authenticated user with Reporter-level group permissions to view package metadata from projects with the...
CVE-2024-1485 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-rails-ce...
GHSA-98M9-HRRM-R99R vulnerabilities
Vulnerabilities for packages: cinc-auditor, ruby3.3-faraday, kube-logging-operator, kube-fluentd-operator, gitlab-rails-ce-fips, gitlab-rails-ce, gitlab-cng, logstash-fips, logstash...
CVE-2026-54297 vulnerabilities
Vulnerabilities for packages: cinc-auditor, ruby3.3-faraday, kube-logging-operator, kube-fluentd-operator, gitlab-rails-ce-fips, gitlab-rails-ce, gitlab-cng, logstash-fips, logstash...
Fedora 43 : singularity-ce (2026-5358fb95a0)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-5358fb95a0 advisory. Upgrade to 4.4.2 upstream version. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessu...
Fedora 44 : singularity-ce (2026-63ae478575)
The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-63ae478575 advisory. Upgrade to 4.4.2 upstream version. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessu...