CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Wolfi•added 2026/05/21 1:48 a.m.•8 views

GHSA-65PC-FJ4G-8RJX vulnerabilities

Chainguard•added 2026/05/21 1:17 a.m.•7 views

CVE-2026-45409 vulnerabilities

Vulnerabilities for packages: mlflow, ansible-operator-fips, azureml-inference-server-http-fips, crossplane-function-pythonic, vllm-openai-cuda-13.0, azureml-inference-server-http, py3-opentelemetry-exporter-otlp, superset, apache-beam-python-3.11-sdk, tritonserver-backend-vllm-cuda-13.0,...

6.9CVSS6.3AI score

Chainguard•added 2026/05/21 1:17 a.m.•5 views

GHSA-65PC-FJ4G-8RJX vulnerabilities

OSV•added 2026/05/18 1:21 p.m.•1 views

CLEANSTART-2026-LI56163 Security fixes for CVE-2026-27143, CVE-2026-27144, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33811, CVE-2026-33814, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501 applied in versions: 1.0.8-r0, 1.0.8-r1

Multiple security vulnerabilities affect the confluent-cp-docker-utils package. These issues are resolved in later releases. See references for individual vulnerability details...

9.8CVSS5.8AI score0.00054EPSS

Exploits0References37

OSV•added 2026/05/18 1:20 p.m.•2 views

CLEANSTART-2026-RD06185 Security fixes for CVE-2024-29371, CVE-2026-1225, CVE-2026-24281, CVE-2026-24308, CVE-2026-42577, CVE-2026-42583, ghsa-25qh-j22f-pwp8, ghsa-3677-xxcr-wjqv, ghsa-72hv-8253-57qq, ghsa-7xrh-hqfc-g7qr, ghsa-crhr-qqj8-rpxc, ghsa-mj4r-2hfc-f8p6, ghsa-qqpg-mvqg-649v, ghsa-rwm7-x88c-3g2p applied in versions: 7.6.9-r2, 7.6.9-r3, 7.6.9-r4, 7.6.9-r5

Multiple security vulnerabilities affect the confluent-common-docker package. These issues are resolved in later releases. See references for individual vulnerability details...

7.5CVSS7.3AI score0.00051EPSS

Exploits2References21

OSV•added 2026/05/18 1:14 p.m.•6 views

CLEANSTART-2026-PV53006 Security fixes for CVE-2025-67030, CVE-2026-33811, CVE-2026-33814, CVE-2026-34479, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, ghsa-6fmv-xxpf-w3cw, ghsa-72hv-8253-57qq applied in versions: 8.2.0-r0, 8.2.0-r1, 8.2.0-r2

Multiple security vulnerabilities affect the confluent-kafka package. These issues are resolved in later releases. See references for individual vulnerability details...

8.8CVSS5.8AI score0.00427EPSS

Exploits1References29

RedhatCVE•added 2026/01/09 11:27 a.m.•4 views

CVE-2021-33923

Insecure permissions in Confluent Ansible cp-ansible 5.5.0, 5.5.1, 5.5.2 and 6.0.0 allows local attackers to access some sensitive information private keys, state database...

5.5CVSS6.3AI score0.00046EPSS

RedhatCVE•added 2026/01/09 11:26 a.m.•3 views

CVE-2021-33924

Confluent Ansible cp-ansible version 5.5.0, 5.5.1, 5.5.2 and 6.0.0 is vulnerable to Incorrect Access Control via its auxiliary component that allows remote attackers to access sensitive information...

9.8CVSS6.9AI score0.00798EPSS

OSSF Malicious Packages•added 2025/12/10 1:57 a.m.•6 views

Malicious code in confluent-kafka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80f8f3691acc10147a767bd08facab31e59a8acfb8d38c89df1400e263cc6f8f The package confluent-kafka was found to contain malicious code. Source: ghsa-malware 135e8cf2cd5582b8ed8562c5f5ccfd1cf7265319ad340463b750b75e341858e...

6.9AI score

Snyk•added 2025/12/10 1:57 a.m.•2 views

Malicious Package

Overview confluent-kafka is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score

Exploits0References2

EUVD•added 2025/12/10 1:57 a.m.•2 views

EUVD-2025-202372

Malicious code in confluent-kafka npm...

6.6AI score

OSV•added 2025/12/10 1:57 a.m.•3 views

MAL-2025-192405 Malicious code in confluent-kafka (npm)

6.8AI score

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-20596

Malware in sbrugna...

9.8CVSS9.2AI score0.00798EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-20595

Malware in sbrugna...

5.5CVSS5.6AI score0.00046EPSS

Exploits0References3

Wolfi•added 2025/09/20 2:20 p.m.•2 views

CVE-2025-47906 vulnerabilities

Vulnerabilities for packages: php-fpmexporter, gitlab-runner, bank-vaults, newrelic-nri-statsd, nats, local-path-provisioner, vault-benchmark, kuberay-operator, git-lfs, pvc-autoresizer, gitsign, knative-serving, vexctl, shfmt, dagdotdev, secrets-store-csi-driver-provider-aws, gostatsd,...

6.5CVSS6.5AI score0.00044EPSS

Exploits1

Wolfi•added 2025/09/20 2:20 p.m.•5 views

GHSA-GWRF-JF3H-W649 vulnerabilities

Chainguard•added 2025/09/20 1:30 p.m.•4 views

GHSA-GWRF-JF3H-W649 vulnerabilities

Vulnerabilities for packages: karma-fips, memcached-exporter-fips, nats, k8sgpt-operator, dagdotdev, cluster-api, terraform-provider-tls-fips, custom-pod-autoscaler-operator, lvm-driver, mattmoor-chainit, prometheus-nats-exporter, addon-resizer, nemo, apm-server-fips, prometheus-beat-exporter-fip...

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•3 views

Malicious code in confluent-examples-nodejs (npm)

The package confluent-examples-nodejs was found to contain malicious code...

7AI score

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-17485 Malicious code in confluent-examples-nodejs (npm)

The package confluent-examples-nodejs was found to contain malicious code...

7.2AI score