18 matches found
GHSA-8XWF-RJM4-XVHV vulnerabilities
Vulnerabilities for packages: ratify, argocd-image-updater, kots, kubescape, kube-mgmt, maru, envoy-gateway-fips, helm-push, trivy-operator-fips, steampipe, chaos-mesh, gogatekeeper, crossplane, oras, manifest-tool, chartmuseum-fips, linkerd2, ocm-kubernetes-controller-fips, xeol-fips, jfrog-cli,...
GHSA-XF85-363P-868W vulnerabilities
Vulnerabilities for packages: ratify, argocd-image-updater, kots, kubescape, kube-mgmt, maru, envoy-gateway-fips, helm-push, trivy-operator-fips, steampipe, chaos-mesh, gogatekeeper, crossplane, oras, manifest-tool, chartmuseum-fips, linkerd2, ocm-kubernetes-controller-fips, xeol-fips, jfrog-cli,...
CVE-2026-50162 vulnerabilities
Vulnerabilities for packages: ratify, argocd-image-updater, kots, kubescape, kube-mgmt, maru, envoy-gateway-fips, helm-push, trivy-operator-fips, steampipe, chaos-mesh, gogatekeeper, crossplane, oras, manifest-tool, chartmuseum-fips, linkerd2, ocm-kubernetes-controller-fips, xeol-fips, jfrog-cli,...
GHSA-VH4V-2XQ2-G5CG vulnerabilities
Vulnerabilities for packages: ratify, argocd-image-updater, kots, kubescape, kube-mgmt, maru, envoy-gateway-fips, helm-push, trivy-operator-fips, steampipe, chaos-mesh, gogatekeeper, crossplane, oras, manifest-tool, chartmuseum-fips, linkerd2, ocm-kubernetes-controller-fips, xeol-fips, jfrog-cli,...
GHSA-JXPM-75MH-9FP7 vulnerabilities
Vulnerabilities for packages: ratify, argocd-image-updater, kots, kubescape, kube-mgmt, maru, envoy-gateway-fips, helm-push, trivy-operator-fips, steampipe, chaos-mesh, gogatekeeper, crossplane, oras, manifest-tool, chartmuseum-fips, linkerd2, ocm-kubernetes-controller-fips, xeol-fips, jfrog-cli,...
CVE-2026-50151 vulnerabilities
Vulnerabilities for packages: ratify, argocd-image-updater, kots, kubescape, kube-mgmt, maru, envoy-gateway-fips, helm-push, trivy-operator-fips, steampipe, chaos-mesh, gogatekeeper, crossplane, oras, manifest-tool, chartmuseum-fips, linkerd2, ocm-kubernetes-controller-fips, xeol-fips, jfrog-cli,...
CVE-2026-35469 vulnerabilities
Vulnerabilities for packages: kwok, argocd-image-updater, kcp, kots, gitlab-kas-fips, kubescape, percona-server-mongodb-operator, kubernetes-dashboard-api, envoy-gateway-fips, istio, kubeflow-pipelines, redis-operator-fips, trivy-operator-fips, redis-operator, eck-operator,...
CVE-2026-32288 vulnerabilities
Vulnerabilities for packages: gitlab-kas-fips, kaf, tkn, aws-flb-cloudwatch, commercial-chainloop-cli, kbld, libnvidia-container, sonobuoy, commercial-grafana, kubernetes, crossplane, mesosphere-vsphere-csi-fips, ingress-nginx-controller, traefik-fips, xeol-fips, crossplane-fips, k9s-fips, task,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: onepassword-operator, kubeflow-katib, cert-manager-csi-driver-fips, cluster-api-provider-vsphere, gitlab-kas-fips, kaf, kubernetes-dashboard-api, tkn, secrets-store-csi-driver-provider-aws, aws-flb-cloudwatch, oauth2-proxy, commercial-chainloop-cli, cue-fips,...
GHSA-X4JJ-H2V8-HQQV vulnerabilities
Vulnerabilities for packages: gitlab-kas-fips, kaf, tkn, aws-flb-cloudwatch, commercial-chainloop-cli, kbld, libnvidia-container, sonobuoy, commercial-grafana, kubernetes, crossplane, mesosphere-vsphere-csi-fips, ingress-nginx-controller, traefik-fips, xeol-fips, crossplane-fips, k9s-fips, task,...
GHSA-5W89-2C2X-6X66 vulnerabilities
Vulnerabilities for packages: yunikorn-web, cluster-api-provider-vsphere, nri-f5-fips, kubescape-http-request-fips, spire-controller-manager, commercial-grafana, emissary, cluster-api-ipam-provider-in-cluster, mesosphere-vsphere-csi-fips, step-issuer, prometheus-redis-exporter, crossplane-fips,...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy-fips, logstash-exporter, stern, nodetaint, kubeflow-katib, onepassword-operator, cert-manager-csi-driver-fips, cluster-api-provider-vsphere, gitlab-kas-fips, yunikorn-web, nri-elasticsearch-fips, maru, percona-server-mongodb-operator,...
GHSA-GJVH-7JH8-7XHM vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy-fips, logstash-exporter, stern, nodetaint, kubeflow-katib, onepassword-operator, cert-manager-csi-driver-fips, cluster-api-provider-vsphere, gitlab-kas-fips, yunikorn-web, nri-elasticsearch-fips, maru, percona-server-mongodb-operator,...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy-fips, logstash-exporter, stern, nodetaint, onepassword-operator, yunikorn-web, cert-manager-csi-driver-fips, cluster-api-provider-vsphere, gitlab-kas-fips, nri-elasticsearch-fips, maru, percona-server-mongodb-operator,...
CLEANSTART-2026-BT39952 Moby is an open source container framework developed by Docker Inc
Multiple security vulnerabilities affect the consul-k8s-fips package. Moby is an open source container framework developed by Docker Inc. See references for individual vulnerability details...
CLEANSTART-2026-ME47927 net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines
Multiple security vulnerabilities affect the consul-k8s-fips package. The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. See references for individual vulnerability details...
CLEANSTART-2026-BQ46815 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the consul-k8s-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-PA85871 net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines
Multiple security vulnerabilities affect the consul-k8s-fips package. The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. See references for individual vulnerability details...