109 matches found
GHSA-X4JJ-H2V8-HQQV vulnerabilities
Vulnerabilities for packages: helm-fips, tofu-controller-fips, extism, kbld, knative-eventing-fips, ko-fips, rancher-agent, kubescape-server-fips, kubernetes, backup-restore-operator, gatekeeper, telegraf, flux-source-controller-fips, flux-operator, ingress-nginx-controller-fips, jsonnet-bundler,...
CVE-2026-32288 vulnerabilities
Vulnerabilities for packages: helm-fips, tofu-controller-fips, extism, kbld, knative-eventing-fips, ko-fips, rancher-agent, kubescape-server-fips, kubernetes, backup-restore-operator, gatekeeper, telegraf, flux-source-controller-fips, flux-operator, ingress-nginx-controller-fips, jsonnet-bundler,...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: helm-fips, chisel-fips, tofu-controller-fips, extism, cilium-certgen-fips, aws-ebs-csi-driver-fips, docker-machine-driver-linode, kbld, knative-eventing-fips, ko-fips, prometheus-redis-exporter, aws-efs-csi-driver, grafana-pyroscope,...
CVE-2024-34679
Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege...
EUVD-2025-117227
Malicious code in minor-fuchsia-crane npm...
MAL-2025-138875 Malicious code in minor-fuchsia-crane (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29ce63415662725c0c3620992b4fbb30a54971d88e2d592defa0964d84f727e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in juicy_crane_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77b7680011fb13a9be52884b44764bc62e5c0373cbc7e9591336ccd7f18367eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-102083
Malicious code in standardcranez3n npm...
EUVD-2025-98677
Malicious code in generalcranez3n npm...
EUVD-2025-96444
Malicious code in minorcranez3n npm...
EUVD-2025-105958
Malicious code in damagedcranez3n npm...
MAL-2025-119345 Malicious code in damaged_crane_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b12b475bee37ae4de2ae1eb124cf15d6d7a1b79c4c949437e393504c063286f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in striking_crane_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bb53c195c65fad904345dc0bbe7167e6040eda738d7b08c3aa7e334541a530a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-74355
Malicious code in possiblecraneaquamarine-5 npm...
Malicious code in possible_crane_aquamarine-5 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a26bbaee920a59328aa2349da5206b107cbdfef48679df9e37b4c325528a9de3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-74090
Malicious code in weakcraneindigo-38 npm...
EUVD-2025-74455
Malicious code in minorcraneolive-12 npm...
MAL-2025-112429 Malicious code in unknown_crane_turquoise-85 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c38720061c06a254d61b832504c32cf4286da27f126000bbf354efcb06865a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-77288
Malicious code in complicatedcrane-smiletea npm...
Malicious code in vitreous_crane-apptea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d925934a165f69e2d8bfc990dc54974d1ac6784fabf5ff8454d08df17cf5527 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...