153 matches found
EUVD-2025-20270
Malicious code in bioql PyPI...
EUVD-2024-2000
Malicious code in bioql PyPI...
[SECURITY] Fedora 42 Update: podman-5.6.1-1.fc42
podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the management of pods, containers and images. Simply put: alias docker=3Dpodman. Most...
[SECURITY] Fedora 41 Update: docker-buildx-0.27.0-1.fc41
Docker CLI plugin for extended build capabilities with BuildKit...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: kubescape-operator-fips, cloudnative-pg, nvidia-container-toolkit, aws-node-termination-handler, kube-oidc-proxy, kubevela, grafana-pyroscope, cargobump, helm-set-status, knative-serving-fips, helm-operator-fips, consul-k8s, newrelic-nri-kube-events,...
GHSA-X4RX-4GW3-53P4 vulnerabilities
Vulnerabilities for packages: zot, prometheus, trivy, buf, osv-scanner, nerdctl, zarf, opentelemetry-collector, aws-otel-collector, trufflehog, docker-cli-buildx, opentelemetry-collector-contrib, goreleaser, apko, wolfictl, melange, syft, k9s, falcoctl, cadvisor, dagger, openfga, telegraf, kargo,...
CVE-2025-53376
Dokploy is a self-hostable Platform as a Service PaaS that simplifies the deployment and management of applications and databases. An authenticated, low-privileged user can run arbitrary OS commands on the Dokploy host. The tRPC procedure docker.getContainersByAppNameMatch interpolates the...
CVE-2025-53376 Dokploy allows attackers to run arbitrary OS commands on the Dokploy host.
Dokploy is a self-hostable Platform as a Service PaaS that simplifies the deployment and management of applications and databases. An authenticated, low-privileged user can run arbitrary OS commands on the Dokploy host. The tRPC procedure docker.getContainersByAppNameMatch interpolates the...
CVE-2025-53376 Dokploy allows attackers to run arbitrary OS commands on the Dokploy host.
Dokploy is a self-hostable Platform as a Service PaaS that simplifies the deployment and management of applications and databases. An authenticated, low-privileged user can run arbitrary OS commands on the Dokploy host. The tRPC procedure docker.getContainersByAppNameMatch interpolates the...
PT-2025-28204 · Dokploy · Dokploy
Name of the Vulnerable Software and Affected Versions: Dokploy versions prior to 0.23.7 Description: Dokploy is a self-hostable Platform as a Service PaaS that simplifies the deployment and management of applications and databases. An authenticated, low-privileged user can run arbitrary OS comman...
ROS-20250515-04
The vulnerability of the docker CLI plugin that extends Buildx build capabilities is related to the fact that the software stores sensitive information in log files. software stores sensitive information in log files. Exploiting the vulnerability could allow an attacker to gain access to sensitiv...
GHSA-265R-HFXG-FHMG vulnerabilities
Vulnerabilities for packages: zot, gatekeeper, kaniko, opa, trivy, osv-scanner, nerdctl, skaffold, kubevela, consul-k8s, teleport, zarf, flux-source-controller, helm, docker-cli-buildx, helm-operator, cert-manager-cmctl, k8sgpt, k8ssandra-client, linkerd2, newrelic-infrastructure-agent,...
CVE-2025-0495
Buildx is a Docker CLI plugin that extends build capabilities using BuildKit. Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry...
CVE-2025-0495
Buildx is a Docker CLI plugin that extends build capabilities using BuildKit. Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry...
CVE-2025-0495 Secrets leakage to telemetry endpoint via cache backend configuration via buildx
Buildx is a Docker CLI plugin that extends build capabilities using BuildKit. Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry...
CVE-2025-0495
CVE-2025-0495 affects docker-buildx/moby-buildx (Buildx) where credentials set as attribute values in cache-to/cache-from can be captured by OpenTelemetry traces and BuildKit history. Exploitation status is not detailed in the provided sources. The vulnerability does not apply to secrets passed v...
CVE-2023-45288 affecting package docker-cli for versions less than 25.0.7-1
CVE-2023-45288 affecting package docker-cli for versions less than 25.0.7-1. An upgraded version of the package is available that resolves this issue...
Azure Linux 3.0 Security Update: docker-cli / moby-cli / moby-compose / moby-engine (CVE-2024-36623)
The version of docker-cli / moby-cli / moby-compose / moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36623 advisory. - moby through v25.0.3 has a Race Condition vulnerability in the...
[SECURITY] Fedora 41 Update: podman-5.3.2-1.fc41
podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the management of pods, containers and images. Simply put: alias docker=3Dpodman. Most...
CVE-2024-36623 affecting package docker-cli for versions less than 25.0.3-3
CVE-2024-36623 affecting package docker-cli for versions less than 25.0.3-3. A patched version of the package is available...