14 matches found
CVE-2026-32952 vulnerabilities
Vulnerabilities for packages: bento, telegraf, seaweedfs-rocksdb, zitadel, elastic-agent-fips, nuclei, cert-manager, cert-manager-csi-driver, cert-manager-istio-csr-fips, harbor, gitlab-runner, flux, kyverno, yunikorn-k8shim-fips, external-secrets-fips, juicefs, cert-manager-fips, k6-fips,...
CLEANSTART-2026-DS01292 Security fixes for CVE-2025-47910, CVE-2025-47913, CVE-2025-47914, CVE-2025-58181, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2026-24051, CVE-2026-27141, ghsa-9h8m-3fm2-qjrq applied in versions: 1.19.1-r0, 1.19.2-r0, 1.19.2-r1
Multiple security vulnerabilities affect the cert-manager-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-SM37781 Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic
Multiple security vulnerabilities affect the cert-manager-fips package. Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic See references for individual vulnerability details...
CVE-2025-61728 vulnerabilities
Vulnerabilities for packages: bento, etcd-fips, mattermost-fips, telegraf, ingress-nginx-controller-fips, eksctl, dask-gateway, mattermost, zitadel, prometheus, cilium-envoy, helm-set-status, gpu-operator-fips, newrelic-fluent-bit-output-fips, elastic-agent-fips, logstash,...
CLEANSTART-2026-YC48827 Within HostnameError
Multiple security vulnerabilities affect the cert-manager-fips package. Within HostnameError. See references for individual vulnerability details...
CLEANSTART-2026-DP30290 processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input
Multiple security vulnerabilities affect the cert-manager-fips package. The processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input. See references for individual vulnerability details...
GHSA-GHW8-3XQW-HHCJ vulnerabilities
Vulnerabilities for packages: cert-manager-istio-csr, cert-manager-webhook-pdns, step-issuer, aws-privateca-issuer, cert-manager-webhook-pdns-fips, step-issuer-fips, aws-privateca-issuer-fips, cert-manager-cmctl, cert-manager-cmctl-fips, cert-exporter-fips, cert-exporter, cert-manager,...
GHSA-56W8-48FP-6MGV vulnerabilities
Vulnerabilities for packages: etcd-fips, k3s, gitlab-rails-ce-fips, vault, etcd, backup-restore-operator, terraform, gitlab-rails-ce, falco-no-driver, cert-manager-fips, rke2-runtime-fips, consul-k8s...
CVE-2025-47913 vulnerabilities
Vulnerabilities for packages: etcd-fips, k3s, gitlab-rails-ce-fips, vault, etcd, backup-restore-operator, terraform, gitlab-rails-ce, falco-no-driver, cert-manager-fips, rke2-runtime-fips, consul-k8s...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: velero, eksctl, atlantis-fips, prometheus-redis-exporter-fips, caddy, oauth2-proxy, nri-kubernetes, crossplane-provider-aws-s3, prometheus-mongodb-exporter-fips, temporal-server, bank-vaults, cass-operator, protoc-gen-go-grpc, wavefront-collector-for-kubernetes,...
GHSA-XW73-RW38-6VJC vulnerabilities
Vulnerabilities for packages: cosign-fips, bom, eksctl, helm-operator-fips, docker-machine-driver-harvester, k9s, falcoctl-fips, kubeflow-katib, loki, kpt, cadvisor-fips, dagger, datadog-agent-fips, policy-controller-fips, kubescape, argo-workflows, pulumi, buildkitd, ctop, chartmuseum, scorecard...
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: cosign-fips, bom, eksctl, helm-operator-fips, docker-machine-driver-harvester, k9s, falcoctl-fips, kubeflow-katib, loki, kpt, cadvisor-fips, dagger, datadog-agent-fips, policy-controller-fips, kubescape, argo-workflows, pulumi, buildkitd, ctop, chartmuseum, scorecard...
GHSA-JQ35-85CJ-FJ4P vulnerabilities
Vulnerabilities for packages: bom, spire-server-fips, falcoctl-fips, kpt, paranoia, kubescape, rancher-agent, ctop, chartmuseum, scorecard, cert-manager, skaffold, aactl, falco, slsa-verifier, k3s, k3d, tekton-chains, up...
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: kind, atlantis-fips, gomplate, caddy, oauth2-proxy, prometheus-mongodb-exporter-fips, kpt, prometheus-blackbox-exporter, pulumi-language-yaml, bank-vaults, metrics-server-fips, nri-prometheus, tkn, wavefront-collector-for-kubernetes, flux-notification-controller,...