GHSA-PC3F-X583-G7J2 vulnerabilities

Vulnerabilities for packages: verticadb-operator, docker-cli-buildx, cloudnative-pg, kubevela, headlamp, k8sgpt, aws-node-termination-handler, cert-manager-istio-csr, infinispan-operator, argo-rollouts, percona-server-mongodb-operator, rancher, velero, argocd-image-updater, istio, rancher-agent,...

CVE-2026-35469 vulnerabilities

Vulnerabilities for packages: verticadb-operator, docker-cli-buildx, cloudnative-pg, kubevela, headlamp, k8sgpt, aws-node-termination-handler, cert-manager-istio-csr, infinispan-operator, argo-rollouts, percona-server-mongodb-operator, rancher, velero, argocd-image-updater, istio, rancher-agent,...

CVE-2026-32282 vulnerabilities

Vulnerabilities for packages: aactl, kine, spire-server, snyk-cli, k8s-device-plugin, cert-manager, cloud-provider-aws, grafana, istio, aws-flb-cloudwatch, runc, telegraf, zot, argo-cd, nerdctl, kube-arangodb, hubble, k3s, knative-serving, redka, newrelic-fluent-bit-output, falco-no-driver,...

CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: dbmate, temporal-ui-server, cert-manager, nri-nginx, thanos-operator, infinispan-operator, aws-eks-pod-identity-agent, rancher-fleet, incert, vendir, redka, vault-k8s, timoni, amazon-k8s-cni, mc, timescaledb-parallel-copy, falcoctl, hcloud, sftpgo-plugin-eventsearch,...

GHSA-7MR4-XJXG-34G6 vulnerabilities

Vulnerabilities for packages: spire-server, verticadb-operator, dbmate, temporal-ui-server, secrets-store-csi-driver-provider-azure, step-kms-plugin, cert-manager, modelmesh-runtime-adapter, polaris, cosign, policy-controller, helm-mapkubeapis, envoy-ratelimit, rancher, aws-flb-cloudwatch,...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: terragrunt, buildkitd, crossplane-provider-aws-lambda, policy-controller, crossplane-provider-aws-ec2, tfsec, sops, gomplate, rancher-fleet, src-fingerprint, zot, rclone, zarf, external-secrets-operator, gitlab-runner, gptscript, crossplane-provider-aws-s3,...

GHSA-Q9HV-HPM4-HJ6X vulnerabilities

Vulnerabilities for packages: terragrunt, buildkitd, crossplane-provider-aws-lambda, policy-controller, crossplane-provider-aws-ec2, tfsec, sops, gomplate, rancher-fleet, src-fingerprint, zot, rclone, zarf, external-secrets-operator, gitlab-runner, gptscript, crossplane-provider-aws-s3,...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: crossplane-provider-aws-efs, terraform-provider-azurerm-fips, databricks-cli-fips, gitaly-fips, gitlab-rails-ce, cerbos-fips, helm-fips, docker-cli-buildx-fips, kyverno, atlantis-fips, crossplane-provider-family-aws-fips, terraform-fips,...

EUVD-2023-0902

Malicious code in bioql PyPI...

GHSA-J5PM-7495-QMR3 vulnerabilities

Vulnerabilities for packages: supercronic, direnv, databricks-cli-fips, kubescape-operator-fips, cerbos-fips, jitsucom-bulker, rancher-agent, eck-operator, apko-fips, argo-cd-fips, eksctl, ini-file, qemu-guesthelper, tigera-operator-fips, polaris-fips, cluster-api-ipam-provider-in-cluster,...

CVE-2025-53547 vulnerabilities

Vulnerabilities for packages: k9s, k8sgpt, rancher-helm, chartmuseum, cerbos, istio, rancher-fleet, envoy-gateway, trivy, chart-testing, kuma, zot, kargo, flux-helm-controller, k8ssandra-client, zarf, cilium-cli, linkerd2, consul-k8s, flux-source-controller, teleport, eksctl, harbor, kots,...

GHSA-557J-XG8C-Q2MM vulnerabilities

Vulnerabilities for packages: k9s, k8sgpt, rancher-helm, chartmuseum, cerbos, istio, rancher-fleet, envoy-gateway, trivy, chart-testing, kuma, zot, kargo, flux-helm-controller, k8ssandra-client, zarf, cilium-cli, linkerd2, consul-k8s, flux-source-controller, teleport, eksctl, harbor, kots,...

CVE-2025-53547 vulnerabilities

Vulnerabilities for packages: linkerd2-fips, flux-source-controller, consul-k8s, zot, cerbos-fips, k8ssandra-client, flux, tw, cilium-cli, rancher-fleet-fips, teleport, cloudbeat-fips, flux-helm-controller-fips, trivy-operator-fips, cert-manager-fips, eksctl, cerbos, rancher-helm, rancher-fleet,...

GHSA-557J-XG8C-Q2MM vulnerabilities

Vulnerabilities for packages: linkerd2-fips, flux-source-controller, consul-k8s, zot, cerbos-fips, k8ssandra-client, flux, tw, cilium-cli, rancher-fleet-fips, teleport, cloudbeat-fips, flux-helm-controller-fips, trivy-operator-fips, cert-manager-fips, eksctl, cerbos, rancher-helm, rancher-fleet,...

GHSA-265R-HFXG-FHMG vulnerabilities

Vulnerabilities for packages: docker-cli-buildx, ctop, kubevela, opa, k8sgpt, buildkitd, chartmuseum, melange, docker-compose, neuvector-scanner, rancher-fleet, envoy-gateway, trivy, newrelic-infrastructure-agent, zot, grype, nerdctl, kargo, k3s, xeol, k8ssandra-client, fuse-overlayfs-snapshotter...

CVE-2024-40635 vulnerabilities

Vulnerabilities for packages: opa, helm-fips, docker-cli-buildx-fips, k8ssandra-client, kaniko-fips, neuvector-scanner, rancher-agent, cloudbeat-fips, newrelic-infrastructure-agent, flux-helm-controller-fips, eksctl, helm, trivy, docker-compose-fips, xeol, neuvector-fips,...

GHSA-265R-HFXG-FHMG vulnerabilities

Vulnerabilities for packages: opa, helm-fips, docker-cli-buildx-fips, k8ssandra-client, kaniko-fips, neuvector-scanner, rancher-agent, cloudbeat-fips, newrelic-infrastructure-agent, flux-helm-controller-fips, eksctl, helm, trivy, docker-compose-fips, xeol, neuvector-fips,...

GHSA-QXP5-GWG8-XV66 vulnerabilities

Vulnerabilities for packages: dbmate, temporal-ui-server, cert-manager, thanos-operator, rancher-fleet, src-fingerprint, vault-k8s, timoni, amazon-k8s-cni, falcoctl, hcloud, sftpgo-plugin-eventsearch, dive, terraform-docs, opa-envoy, k6, prometheus-alertmanager, kubernetes-dns-node-cache, tkn,...

GO-2023-1653 `cilium-cli` disables etcd authorization for clustermesh clusters in github.com/cilium/cilium-cli

cilium-cli disables etcd authorization for clustermesh clusters in github.com/cilium/cilium-cli...

GHSA-VWF8-Q6FW-4WCM vulnerabilities

Vulnerabilities for packages: hubble-fips, hubble-ui-backend-fips, hubble, hubble-ui, cilium-cli, cilium-fips, cilium...