Lucene search
+L

377 matches found

Chainguard
Chainguard
added 2026/02/04 7:17 p.m.10 views

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: aws-privateca-issuer-fips, cert-manager-cmctl-fips, percona-xtradb-cluster-operator-fips, cert-manager-istio-csr, percona-server-mongodb-operator, aws-privateca-issuer, cert-manager-csi-driver-fips, cert-manager-csi-driver, opentelemetry-operator,...

5.9CVSS5.1AI score0.00349EPSS
Exploits0
Wolfi
Wolfi
added 2026/02/04 1:48 p.m.7 views

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: mariadb-operator, percona-server-mongodb-operator, opentelemetry-operator, step-issuer, cert-manager-csi-driver, cert-manager-webhook-pdns, aws-privateca-issuer, cert-manager-cmctl, cert-manager-istio-csr...

5.9CVSS5.1AI score0.00349EPSS
Exploits0
Wolfi
Wolfi
added 2026/02/03 7:48 p.m.6 views

GHSA-GX3X-VQ4P-MHHV vulnerabilities

Vulnerabilities for packages: mariadb-operator, percona-server-mongodb-operator, opentelemetry-operator, step-issuer, cert-manager-csi-driver, cert-manager-webhook-pdns, aws-privateca-issuer, cert-manager-cmctl, cert-manager-istio-csr...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2026/02/03 7:17 p.m.8 views

GHSA-GX3X-VQ4P-MHHV vulnerabilities

Vulnerabilities for packages: aws-privateca-issuer-fips, cert-manager-cmctl-fips, percona-xtradb-cluster-operator-fips, cert-manager-istio-csr, percona-server-mongodb-operator, aws-privateca-issuer, cert-manager-csi-driver-fips, cert-manager-csi-driver, opentelemetry-operator,...

5.3AI score
Exploits0
Snyk
Snyk
added 2026/02/02 10:11 p.m.5 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the DNS cache. An attacker can cause the controller to panic and become unavailable by inserting a specially crafted DNS response into the cache, either by intercepting and modifying DNS traffic or by controlli...

6CVSS5.5AI score0.00349EPSS
Exploits0References3
OSV
OSV
added 2026/02/02 10:11 p.m.5 views

GHSA-GX3X-VQ4P-MHHV cert-manager-controller DoS via Specially Crafted DNS Response

Impact The cert-manager-controller performs DNS lookups during ACME DNS-01 processing for zone discovery and propagation self-checks. By default, these lookups use standard unencrypted DNS. An attacker who can intercept and modify DNS traffic from the cert-manager-controller pod can insert a...

5.9CVSS5.5AI score0.00349EPSS
Exploits0References10
Github Security Blog
Github Security Blog
added 2026/02/02 10:11 p.m.10 views

cert-manager-controller DoS via Specially Crafted DNS Response

Impact The cert-manager-controller performs DNS lookups during ACME DNS-01 processing for zone discovery and propagation self-checks. By default, these lookups use standard unencrypted DNS. An attacker who can intercept and modify DNS traffic from the cert-manager-controller pod can insert a...

5.9CVSS5.5AI score0.00349EPSS
Exploits0References10Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.9 views

PT-2026-6430

Impact The cert-manager-controller performs DNS lookups during ACME DNS-01 processing for zone discovery and propagation self-checks. By default, these lookups use standard unencrypted DNS. An attacker who can intercept and modify DNS traffic from the cert-manager-controller pod can insert a...

5.9CVSS5.5AI score0.00349EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.14 views

PT-2026-6308

Name of the Vulnerable Software and Affected Versions cert-manager versions 1.18.0 through 1.18.4 cert-manager versions 1.19.0 through 1.19.2 Description cert-manager simplifies the process of obtaining, renewing, and using certificates in Kubernetes clusters. The cert-manager-controller performs...

9.8CVSS5.5AI score0.00349EPSS
Exploits0References252
Chainguard
Chainguard
added 2026/01/31 7:17 p.m.7 views

CVE-2025-61728 vulnerabilities

Vulnerabilities for packages: conftest, kubevela-fips, redis-operator-fips, flux-helm-controller-fips, trufflehog-fips, nerdctl, ingress-nginx-controller, datadog-agent-fips, external-secrets-operator-fips, flux-notification-controller, gitlab-rails-ce, gitness, kubeflow-katib, opentofu-fips, bom...

6.5CVSS6.8AI score0.00643EPSS
Exploits1
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.5 views

GHSA-G9Q4-QJX4-2V7Q vulnerabilities

Vulnerabilities for packages: nerdctl, kubernetes-dashboard-api, dask-gateway, kine, minio, eksctl, argo-cd, flux-image-automation-controller, kube-arangodb, helm-operator, kubernetes-dns-node-cache, gitness, opensearch-k8s-operator, opentofu, conftest, cert-manager-cmctl, scorecard, ferretdb, sr...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.12 views

CVE-2025-61728 vulnerabilities

Vulnerabilities for packages: nerdctl, kubernetes-dashboard-api, dask-gateway, kine, minio, eksctl, argo-cd, flux-image-automation-controller, kube-arangodb, helm-operator, kubernetes-dns-node-cache, gitness, opensearch-k8s-operator, opentofu, conftest, cert-manager-cmctl, scorecard, ferretdb, sr...

6.5CVSS6.8AI score0.00643EPSS
Exploits1
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.6 views

GHSA-XVQR-69V8-F3GV vulnerabilities

Vulnerabilities for packages: amass, nri-postgresql, kyverno-policy-reporter-ui, kubernetes-dns-node-cache, kubernetes-dashboard, container-object-storage-interface, cloud-provider-vsphere, sealed-secrets, k8sgateway, swagger, timoni, crossplane-provider-aws-ec2, modelmesh-runtime-adapter,...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.9 views

GHSA-GR56-3GP6-6GMJ vulnerabilities

Vulnerabilities for packages: crossplane-provider-family-aws, dask-gateway, amass, govulncheck, kine, spqr, nri-postgresql, openbao-k8s, local-static-provisioner, aws-signer-notation-plugin, ipfs-cluster, rancher-system-upgrade-controller, restic, kyverno-policy-reporter-ui, wgcf,...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.4 views

GHSA-CM6P-QC7V-M3JW vulnerabilities

Vulnerabilities for packages: amass, nri-postgresql, kyverno-policy-reporter-ui, kubernetes-dns-node-cache, kubernetes-dashboard, container-object-storage-interface, cloud-provider-vsphere, sealed-secrets, k8sgateway, swagger, timoni, crossplane-provider-aws-ec2, modelmesh-runtime-adapter,...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.23 views

CVE-2025-61731 vulnerabilities

Vulnerabilities for packages: amass, nri-postgresql, kyverno-policy-reporter-ui, kubernetes-dns-node-cache, kubernetes-dashboard, container-object-storage-interface, cloud-provider-vsphere, sealed-secrets, k8sgateway, swagger, timoni, crossplane-provider-aws-ec2, modelmesh-runtime-adapter,...

8.6CVSS7.2AI score0.00532EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.12 views

GHSA-GM9R-Q53W-2GH4 vulnerabilities

Vulnerabilities for packages: crossplane-provider-family-aws, dask-gateway, amass, kine, spqr, nri-postgresql, openbao-k8s, local-static-provisioner, aws-signer-notation-plugin, ipfs-cluster, rancher-system-upgrade-controller, restic, kyverno-policy-reporter-ui, wgcf, kubernetes-dns-node-cache,...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.10 views

CVE-2025-68119 vulnerabilities

Vulnerabilities for packages: amass, nri-postgresql, kyverno-policy-reporter-ui, kubernetes-dns-node-cache, kubernetes-dashboard, container-object-storage-interface, cloud-provider-vsphere, sealed-secrets, k8sgateway, swagger, timoni, crossplane-provider-aws-ec2, modelmesh-runtime-adapter,...

7CVSS6.9AI score0.00335EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/31 1:48 p.m.9 views

CVE-2025-61726 vulnerabilities

Vulnerabilities for packages: crossplane-provider-family-aws, dask-gateway, amass, kine, spqr, nri-postgresql, openbao-k8s, local-static-provisioner, aws-signer-notation-plugin, ipfs-cluster, rancher-system-upgrade-controller, restic, kyverno-policy-reporter-ui, wgcf, kubernetes-dns-node-cache,...

7.5CVSS7AI score0.01945EPSS
Exploits0
OSV
OSV
added 2026/01/30 3:56 p.m.14 views

CLEANSTART-2026-YC48827 Within HostnameError

Multiple security vulnerabilities affect the cert-manager-fips package. Within HostnameError. See references for individual vulnerability details...

9.8CVSS6.9AI score0.00632EPSS
Exploits3References29
Rows per page
Query Builder