14 matches found
CVE-2026-32952 vulnerabilities
Vulnerabilities for packages: seaweedfs, rclone, cloudbeat-fips, spqr, yunikorn-k8shim, openbao, ldap2pg, harbor, rancher-agent, harbor-fips, flux-source-controller-fips, opentofu-fips, grafana-fips, gitlab-runner, versitygw, beats-fips, external-secrets-operator, seaweedfs-fips,...
CLEANSTART-2026-DS01292 Security fixes for CVE-2025-47910, CVE-2025-47913, CVE-2025-47914, CVE-2025-58181, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2026-24051, CVE-2026-27141, ghsa-9h8m-3fm2-qjrq applied in versions: 1.19.1-r0, 1.19.2-r0, 1.19.2-r1
Multiple security vulnerabilities affect the cert-manager-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-SM37781 Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic
Multiple security vulnerabilities affect the cert-manager-fips package. Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic See references for individual vulnerability details...
CVE-2025-61728 vulnerabilities
Vulnerabilities for packages: omnictl-multiarch, apm-server, conftest, opensearch-k8s-operator, cloudbeat-fips, gitness, helm-operator-fips, k8sgateway, kubernetes-csi-node-driver-registrar-fips, rancher-agent, flux-image-automation-controller, vale, kube-state-metrics, flux-source-controller-fip...
CLEANSTART-2026-YC48827 Within HostnameError
Multiple security vulnerabilities affect the cert-manager-fips package. Within HostnameError. See references for individual vulnerability details...
CLEANSTART-2026-DP30290 processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input
Multiple security vulnerabilities affect the cert-manager-fips package. The processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input. See references for individual vulnerability details...
GHSA-GHW8-3XQW-HHCJ vulnerabilities
Vulnerabilities for packages: cert-manager-cmctl, cert-exporter, cert-manager-istio-csr, cert-manager, cert-manager-webhook-pdns, cert-manager-webhook-pdns-fips, aws-privateca-issuer-fips, cert-manager-cmctl-fips, cert-exporter-fips, cert-manager-fips, step-issuer-fips, step-issuer,...
CVE-2025-47913 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, backup-restore-operator, vault, falco-no-driver, gitlab-rails-ce-fips, terraform, consul-k8s, cert-manager-fips, rke2-runtime-fips, k3s...
GHSA-56W8-48FP-6MGV vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, backup-restore-operator, vault, falco-no-driver, gitlab-rails-ce-fips, terraform, consul-k8s, cert-manager-fips, rke2-runtime-fips, k3s...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: kube-logging-operator, go-ipfs-fips, prometheus-stackdriver-exporter, boring-registry, doppler-kubernetes-operator, dynamic-localpv-provisioner-fips, smarter-device-manager, vertical-pod-autoscaler, fulcio, prometheus-operator, velero, kubevela,...
GHSA-XW73-RW38-6VJC vulnerabilities
Vulnerabilities for packages: kubescape, policy-controller-fips, k9s, trivy, zarf, helm-operator, falcoctl, cri-tools, flux-image-reflector-controller, helm, docker-credential-gcr, newrelic-infrastructure-agent, cert-manager-fips, argo-workflows, helm-operator-fips, docker-machine-driver-harveste...
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: kubescape, policy-controller-fips, k9s, trivy, zarf, helm-operator, falcoctl, cri-tools, flux-image-reflector-controller, helm, docker-credential-gcr, newrelic-infrastructure-agent, cert-manager-fips, argo-workflows, helm-operator-fips, docker-machine-driver-harveste...
GHSA-JQ35-85CJ-FJ4P vulnerabilities
Vulnerabilities for packages: kubescape, ctop, k3s, rancher-agent, spire-server-fips, falco, bom, k3d, skaffold, aactl, tekton-chains, falcoctl-fips, kpt, slsa-verifier, cert-manager, chartmuseum, up, scorecard, paranoia...
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: node-problem-detector, k8sgpt-operator, kube-logging-operator, flux-image-reflector-controller, gitness, hey, kots, prometheus-stackdriver-exporter, sigstore-scaffolding, rqlite, prometheus-bind-exporter, flux-image-automation-controller, kubernetes-csi-livenessprobe...