53 matches found
GHSA-PC3F-X583-G7J2 vulnerabilities
Vulnerabilities for packages: kpt, aws-node-termination-handler, k8sgpt-operator, argo-workflows, argo-rollouts, gitlab-runner, k9s, kwok, percona-server-mongodb-operator, redis-operator, kots, kubeflow-pipelines, consul-k8s, infinispan-operator, falcoctl, velero, datadog-agent, cilium-cli,...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: docker-credential-acr-env, pgpool2exporter, splunk-otel-collector, flux-notification-controller, docker-cli, nri-nginx, emissary, eksctl, git-sync, bom, gitleaks, fluxcd-kustomize-mutating-webhook, envconsul, multus-cni, sbom-convert, apisix-ingress-controller,...
CLEANSTART-2026-UM45661 Security fixes for CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-61732, CVE-2025-68119, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27141, CVE-2026-27142, ghsa-6v2p-p543-phr9, ghsa-f6x5-jh6r-wrfv, ghsa-hcg3-q754-cr77, ghsa-j5w8-q4qc-rx2x, ghsa-qxp5-gwg8-xv66, ghsa-vvgc-356p-c3xw applied in versions: 4.4.0-r0, 4.4.0-r1, 4.4.0-r2, 4.4.0-r3
Multiple security vulnerabilities affect the dynamic-localpv-provisioner package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-9GCR-GP5F-JW27 vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
GHSA-447V-2QG4-H8HC vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
CVE-2025-61723 vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
CVE-2025-58188 vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
CVE-2025-58186 vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
GHSA-WCW9-47FP-RRFR vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
GHSA-RJCG-56PH-3QVG vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
GHSA-QH38-484V-W52X vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
GHSA-JWMF-CHVC-RF92 vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
GHSA-HJX7-FPXX-MJ48 vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
GHSA-FRHW-MQJ2-WXW2 vulnerabilities
Vulnerabilities for packages: velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, docker-cli, mockgen, petname, wireguard-go, bom, neuvector-sigstore-interface, gitleaks, envconsul, sbom-convert, apisix-ingress-controller, chartmuseum, tekton-pipelines,...
GHSA-CXQ7-XW9V-RCV3 vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
CVE-2025-58185 vulnerabilities
Vulnerabilities for packages: cert-manager, kpt, velero-plugin-for-microsoft-azure, docker-credential-acr-env, pgpool2exporter, helm-docs, k6, guac, rekor, cloud-provider-gcp-cloud-controller-manager, cargobump, mockgen, falco-exporter, secrets-store-csi-driver, vault-k8s, prometheus-alertmanager...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: gofumpt, mongo-tools, terraform-provider-kubernetes, kyverno-policy-reporter, postgres-operator, secrets-store-csi-driver-provider-azure-fips, hugo-fips, consul-fips, openfga, kube-oidc-proxy, kubo, hydra-fips, runc, emissary-fips, mattermost, rekor,...
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: kpt, docker-credential-acr-env, dgraph, docker-cli, cortex, supercronic, actions-runner-controller, nri-rabbitmq, vault-k8s, nri-nginx, prometheus-alertmanager, kube-bench, yq, datadog-agent, speedtest-go, q, petname, dataplaneapi, cass-operator, eksctl,...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: terraform-provider-sendgrid, dgraph, prometheus-blackbox-exporter, cortex, kubevela, buildkitd, spark-operator, k3d, kubescape, aactl, slsa-verifier, kubeflow, up, falco, src, scorecard...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: falcoctl-fips, k3d, dynamic-localpv-provisioner-fips, cortex, bank-vaults-fips, aactl, kubevela, kube-oidc-proxy, prometheus-stackdriver-exporter, metrics-server-fips, falco, dgraph, aws-efs-csi-driver-fips, slsa-verifier, spark-operator,...