GHSA-CVXM-645Q-P574 vulnerabilities

Vulnerabilities for packages: wolfictl, docker-cli-buildx-fips, trivy, kaniko, packer-fips, kubescape-server-fips, trivy-fips, zarf, zot, docker-compose, packer, docker-compose-fips, buildkitd-fips, neuvector-scanner-fips, docker-fips, cloudbeat-fips, zarf-fips, manifest-tool, kaniko-fips,...

CVE-2026-53489 vulnerabilities

Vulnerabilities for packages: wolfictl, docker-cli-buildx-fips, trivy, kaniko, packer-fips, kubescape-server-fips, trivy-fips, zarf, zot, docker-compose, packer, docker-compose-fips, buildkitd-fips, neuvector-scanner-fips, docker-fips, cloudbeat-fips, zarf-fips, manifest-tool, kaniko-fips,...

CVE-2026-50195 vulnerabilities

Vulnerabilities for packages: wolfictl, docker-cli-buildx-fips, trivy, kaniko, packer-fips, kubescape-server-fips, trivy-fips, zarf, zot, docker-compose, packer, docker-compose-fips, buildkitd-fips, neuvector-scanner-fips, docker-fips, cloudbeat-fips, zarf-fips, manifest-tool, kaniko-fips,...

GHSA-33VJ-92QQ-66HC vulnerabilities

Vulnerabilities for packages: wolfictl, docker-cli-buildx-fips, trivy, kaniko, packer-fips, kubescape-server-fips, trivy-fips, zarf, zot, docker-compose, packer, docker-compose-fips, buildkitd-fips, neuvector-scanner-fips, docker-fips, cloudbeat-fips, zarf-fips, manifest-tool, kaniko-fips,...

CVE-2026-53492 vulnerabilities

Vulnerabilities for packages: wolfictl, docker-cli-buildx-fips, trivy, kaniko, packer-fips, kubescape-server-fips, trivy-fips, zarf, zot, docker-compose, packer, docker-compose-fips, buildkitd-fips, neuvector-scanner-fips, docker-fips, cloudbeat-fips, zarf-fips, manifest-tool, kaniko-fips,...

GHSA-JPCC-P29G-P8MQ vulnerabilities

Vulnerabilities for packages: docker-cli-buildx-fips, chaos-mesh, packer-fips, rancher-agent, rancher, docker-compose-fips, buildkitd-fips, helm-fips, cloudbeat-fips, steampipe, k9s-fips, trivy-operator, kube-mgmt, newrelic-infrastructure-agent-fips, tigera-operator, neuvector-scanner, buildkitd,...

GHSA-XHF5-7WJV-PQXP vulnerabilities

Vulnerabilities for packages: docker-cli-buildx-fips, chaos-mesh, packer-fips, rancher-agent, rancher, docker-compose-fips, buildkitd-fips, helm-fips, cloudbeat-fips, steampipe, k9s-fips, trivy-operator, kube-mgmt, newrelic-infrastructure-agent-fips, tigera-operator, neuvector-scanner, buildkitd,...

cybersec-bad-folio

DevFolio Application portfolio étudiant — Spring Boot 3.2 + V...

CVE-2026-42502 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-42502 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-25681 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-25681 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-25680 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-25680 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-46598 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-46598 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-39827 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-39827 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-39833 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-39833 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

CVE-2026-39835 affecting package docker-compose for versions less than 2.27.0-13

CVE-2026-39835 affecting package docker-compose for versions less than 2.27.0-13. A patched version of the package is available...

zero2shell-50

ZeroToShell-50 🚀 A highly curated, containerized training g...

zoneminder-rce-poc

just wait and see Proof of concept for an OS command injectio...

CVE-2026-42869

SOCFortress CoPilot focuses on providing a single pane of glass for all your security operations needs. Prior to 0.1.57, SOCFortress CoPilot ships a hardcoded JWT signing secret as a fallback value in backend/app/auth/utils.py:28 and ships it verbatim in .env.example. Any deployment where JWTSECR...

Security Bulletin: IBM Verify Antenna is affected by multiple vulnerabilities (CVE-2026-33815, CVE-2026-33816, CVE-2026-41889)

Summary IBM Verify Antenna has addressed these vulnerabilities in an update. Vulnerability Details CVEID:CVE-2026-41889 DESCRIPTION: pgx is a PostgreSQL driver and toolkit for Go. Prior to version 5.9.2, SQL injection can occur when the non-default simple protocol is used, a dollar quoted string...

CVE-2026-47179

Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.4, ProjectService.GetProjectFileContent returns the contents of any Docker Compose include directive declared in a project's compose file before any path-traversal validation runs. Because...