CVE-2026-32952 vulnerabilities

Vulnerabilities for packages: gitea-fips, percona-server-mongodb-operator, yunikorn-k8shim-fips, terraform, agentbeat, neuvector-fips, kyverno, teleport, external-secrets-operator, kyverno-fips, seaweedfs-rocksdb, openbao-fips, cert-manager-google-cas-issuer, gitlab-runner, rancher-agent,...

CLEANSTART-2026-DS01292 Security fixes for CVE-2025-47910, CVE-2025-47913, CVE-2025-47914, CVE-2025-58181, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2026-24051, CVE-2026-27141, ghsa-9h8m-3fm2-qjrq applied in versions: 1.19.1-r0, 1.19.2-r0, 1.19.2-r1

Multiple security vulnerabilities affect the cert-manager-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-SM37781 Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic

Multiple security vulnerabilities affect the cert-manager-fips package. Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic See references for individual vulnerability details...

CVE-2025-61728 vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, aws-flb-kinesis-fips, newrelic-fluent-bit-output, nvidia-gpu-operator-validator, tigera-operator, datadog-agent-fips, kubernetes-dashboard-api-fips, reports-server, terraform, agentbeat, skaffold-fips, flux-source-watcher-fips,...

CLEANSTART-2026-YC48827 Within HostnameError

Multiple security vulnerabilities affect the cert-manager-fips package. Within HostnameError. See references for individual vulnerability details...

CLEANSTART-2026-DP30290 processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input

Multiple security vulnerabilities affect the cert-manager-fips package. The processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input. See references for individual vulnerability details...

GHSA-GHW8-3XQW-HHCJ vulnerabilities

Vulnerabilities for packages: cert-manager-webhook-pdns-fips, aws-privateca-issuer, step-issuer, cert-manager, aws-privateca-issuer-fips, cert-manager-cmctl, cert-exporter-fips, cert-manager-istio-csr, cert-manager-cmctl-fips, step-issuer-fips, cert-exporter, cert-manager-webhook-pdns,...

CVE-2025-47913 vulnerabilities

Vulnerabilities for packages: consul-k8s, rke2-runtime-fips, gitlab-rails-ce, k3s, vault, gitlab-rails-ce-fips, falco-no-driver, terraform, backup-restore-operator, cert-manager-fips...

GHSA-56W8-48FP-6MGV vulnerabilities

Vulnerabilities for packages: consul-k8s, rke2-runtime-fips, gitlab-rails-ce, k3s, vault, gitlab-rails-ce-fips, falco-no-driver, terraform, backup-restore-operator, cert-manager-fips...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: aws-flb-kinesis-fips, zarf, prometheus-beat-exporter-fips, wavefront-collector-for-kubernetes, prometheus-pushgateway-fips, crossplane-provider-aws-cloudwatchlogs, terraform-provider-aws, helm, litefs, kubeadm-controlplane-controller, trivy, kube-state-metrics,...

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: eksctl, datadog-agent-fips, falco, flux, dagger, flux-helm-controller, guac, k3d, k9s, ctop, crane, ko-fips, helm-fips, kubevela, policy-controller-fips, zarf, cadvisor, cert-manager, timoni, falcoctl-fips, falcoctl, kots, goreleaser, chartmuseum, k8sgpt,...

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: eksctl, datadog-agent-fips, falco, flux, dagger, flux-helm-controller, guac, k3d, k9s, ctop, crane, ko-fips, helm-fips, kubevela, policy-controller-fips, zarf, cadvisor, cert-manager, timoni, falcoctl-fips, falcoctl, kots, goreleaser, chartmuseum, k8sgpt,...

GHSA-JQ35-85CJ-FJ4P vulnerabilities

Vulnerabilities for packages: falco, k3d, ctop, cert-manager, falcoctl-fips, spire-server-fips, chartmuseum, tekton-chains, skaffold, rancher-agent, slsa-verifier, kpt, aactl, up, paranoia, scorecard, kubescape, k3s, bom...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, falco, kubewatch, flux-helm-controller, prometheus-pushgateway, yq, terraform, falcoctl, haproxy-ingress, nodetaint, wavefront-collector-for-kubernetes, prometheus-pushgateway-fips, dive, kubernetes-csi-external-provisioner,...