14 matches found
CVE-2026-32952 vulnerabilities
Vulnerabilities for packages: gitlab-runner, yunikorn-k8shim, harbor-fips, agentbeat-fips, percona-server-mongodb-operator-fips, zot, cert-manager-csi-driver, vault-fips, trufflehog, cert-manager-cmctl-fips, flux-source-controller, openbao-fips, ldap2pg, harbor, flux-fips, cert-manager-istio-csr,...
CLEANSTART-2026-DS01292 Security fixes for CVE-2025-47910, CVE-2025-47913, CVE-2025-47914, CVE-2025-58181, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2026-24051, CVE-2026-27141, ghsa-9h8m-3fm2-qjrq applied in versions: 1.19.1-r0, 1.19.2-r0, 1.19.2-r1
Multiple security vulnerabilities affect the cert-manager-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-SM37781 Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic
Multiple security vulnerabilities affect the cert-manager-fips package. Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic See references for individual vulnerability details...
CVE-2025-61728 vulnerabilities
Vulnerabilities for packages: runc, calico, agentbeat-fips, eksctl, etcd, prometheus-elasticsearch-exporter, flux-source-watcher-fips, argo-rollouts-fips, flux-kustomize-controller, kubernetes-dns-node-cache, cert-manager-cmctl-fips, gatekeeper-fips, flux-fips, kube-conformance,...
CLEANSTART-2026-YC48827 Within HostnameError
Multiple security vulnerabilities affect the cert-manager-fips package. Within HostnameError. See references for individual vulnerability details...
CLEANSTART-2026-DP30290 processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input
Multiple security vulnerabilities affect the cert-manager-fips package. The processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input. See references for individual vulnerability details...
GHSA-GHW8-3XQW-HHCJ vulnerabilities
Vulnerabilities for packages: aws-privateca-issuer, aws-privateca-issuer-fips, cert-manager-fips, cert-manager, cert-manager-istio-csr, cert-exporter-fips, cert-manager-webhook-pdns, cert-manager-webhook-pdns-fips, step-issuer, cert-manager-cmctl-fips, step-issuer-fips, cert-manager-cmctl,...
CVE-2025-47913 vulnerabilities
Vulnerabilities for packages: backup-restore-operator, falco-no-driver, cert-manager-fips, consul-k8s, k3s, vault, terraform, rke2-runtime-fips, etcd-fips, gitlab-rails-ce, gitlab-rails-ce-fips, etcd...
GHSA-56W8-48FP-6MGV vulnerabilities
Vulnerabilities for packages: backup-restore-operator, falco-no-driver, cert-manager-fips, consul-k8s, k3s, vault, terraform, rke2-runtime-fips, etcd-fips, gitlab-rails-ce, gitlab-rails-ce-fips, etcd...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: kyverno-policy-reporter, logstash-exporter, terraform-provider-google, crossplane-provider-aws-rds, etcd, metrics-server-fips, kyverno-policy-reporter-ui, buf, flannel, kyverno-policy-reporter-kyverno-plugin, aactl, grafana-operator-fips, cilium, fulcio-fips, src,...
GHSA-XW73-RW38-6VJC vulnerabilities
Vulnerabilities for packages: skaffold, k3s, helm-operator-fips, chartmuseum, dagger, docker-credential-gcr, eksctl, skopeo, datadog-agent-fips, zot, buildkitd, goreleaser, k9s, kubevela, cadvisor, helm, timoni, ctop, argo-workflows-fips, cri-tools, crane, kpt, datadog-agent, argo-workflows,...
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: skaffold, k3s, helm-operator-fips, chartmuseum, dagger, docker-credential-gcr, eksctl, skopeo, datadog-agent-fips, zot, buildkitd, goreleaser, k9s, kubevela, cadvisor, helm, timoni, ctop, argo-workflows-fips, cri-tools, crane, kpt, datadog-agent, argo-workflows,...
GHSA-JQ35-85CJ-FJ4P vulnerabilities
Vulnerabilities for packages: skaffold, k3s, rancher-agent, chartmuseum, ctop, kpt, k3d, kubescape, slsa-verifier, falcoctl-fips, tekton-chains, aactl, bom, paranoia, scorecard, spire-server-fips, cert-manager, up, falco...
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: kubeflow, kaf, runc, chartmuseum, pulumi-language-yaml, zot, kubernetes-ingress-defaultbackend, kubernetes-csi-livenessprobe-fips, prometheus-bind-exporter, kind, prometheus-elasticsearch-exporter, kubeflow-fips, gomplate, volume-modifier-for-k8s-fips,...