Lucene search
K

151 matches found

Chainguard
Chainguard
added 5 days ago6 views

GHSA-FF52-PH69-CF7X vulnerabilities

Vulnerabilities for packages: opentelemetry-collector-k8s-fips, nri-postgresql-fips, aws-flb-firehose-fips, secrets-store-csi-driver, crossplane-provider-aws-fsx, pdfcpu, nsc-fips, atlas, mlrun-log-collector, crossplane-provider-aws-fsx-fips, consul-k8s, addon-resizer-fips, oras,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 5 days ago7 views

CVE-2026-42505 vulnerabilities

Vulnerabilities for packages: opentelemetry-collector-k8s-fips, nri-postgresql-fips, aws-flb-firehose-fips, secrets-store-csi-driver, crossplane-provider-aws-fsx, pdfcpu, nsc-fips, atlas, mlrun-log-collector, crossplane-provider-aws-fsx-fips, consul-k8s, addon-resizer-fips, oras,...

5.3CVSS6.1AI score0.00419EPSS
Exploits0
Chainguard
Chainguard
added 2026/07/02 2:16 p.m.10 views

CVE-2024-7598 vulnerabilities

Vulnerabilities for packages: azuredisk-csi, argo-cd-fips, kubernetes-csi-driver-hostpath, harvester, rancher-system-agent, rke2-runtime-fips, eks-distro, harvester-fips, azurefile-csi-fips, longhorn-manager, longhorn-share-manager-fips, cluster-autoscaler-fips, azurefile-csi,...

3.1CVSS6.2AI score0.00301EPSS
Exploits0
Chainguard
Chainguard
added 2026/07/02 2:16 p.m.13 views

GHSA-R56H-J38W-HRQQ vulnerabilities

Vulnerabilities for packages: azuredisk-csi, argo-cd-fips, kubernetes-csi-driver-hostpath, harvester, rancher-system-agent, rke2-runtime-fips, eks-distro, harvester-fips, azurefile-csi-fips, longhorn-manager, longhorn-share-manager-fips, cluster-autoscaler-fips, azurefile-csi,...

6.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/27 12:23 a.m.4 views

CVE-2026-33726

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.14, 1.18.8, and 1.19.2, Ingress Network Policies are not enforced for traffic from pods to L7 Services Envoy, GAMMA with a local backend on the same node, when Per-Endpoint Routing is...

5.4CVSS5.8AI score0.00244EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/03/27 12:23 a.m.29 views

CVE-2026-33726 Cilium L7 proxy may bypass Kubernetes NetworkPolicy for same-node traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.17.14, 1.18.8, and 1.19.2, Ingress Network Policies are not enforced for traffic from pods to L7 Services Envoy, GAMMA with a local backend on the same node, when Per-Endpoint Routing is...

5.4CVSS0.00244EPSS
Exploits0References6
Chainguard
Chainguard
added 2026/03/10 1:17 p.m.11 views

GHSA-J4J7-VW47-RHFQ vulnerabilities

Vulnerabilities for packages: spicedb, aws-flb-firehose-fips, secrets-store-csi-driver, dcgm-exporter, smarter-device-manager-fips, logstash, terraform-provider-azuread, prometheus-podman-exporter-fips, terraform-provider-kubernetes, pgwatch, azcopy-fips, kafka-proxy-fips, blob-csi, docker-compos...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2025/12/24 7:17 a.m.8 views

CVE-2025-47913 vulnerabilities

Vulnerabilities for packages: consul-k8s, k3s, gitlab-rails-ce, cert-manager-fips, falco-no-driver, rke2-runtime-fips, vault, terraform, gitlab-rails-ce-fips, backup-restore-operator...

7.5CVSS6.7AI score0.00632EPSS
Exploits1
Chainguard
Chainguard
added 2025/12/24 7:17 a.m.6 views

GHSA-56W8-48FP-6MGV vulnerabilities

Vulnerabilities for packages: consul-k8s, k3s, gitlab-rails-ce, cert-manager-fips, falco-no-driver, rke2-runtime-fips, vault, terraform, gitlab-rails-ce-fips, backup-restore-operator...

6.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/16 7:48 p.m.7 views

CVE-2025-14503

An overly-permissive IAM trust policy in the Harmonix on AWS framework may allow IAM principals in the same AWS account to escalate privileges via role assumption. The sample code for the EKS environment provisioning role is configured to trust the account root principal, which may enable any IAM...

8.6CVSS7.5AI score0.0043EPSS
Exploits0References1
NVD
NVD
added 2025/11/13 8:15 p.m.6 views

CVE-2025-64709

Typebot is an open-source chatbot builder. In versions prior to 3.13.1, a Server-Side Request Forgery SSRF vulnerability in the Typebot webhook block HTTP Request component functionality allows authenticated users to make arbitrary HTTP requests from the server, including access to AWS Instance...

9.9CVSS0.00367EPSS
Exploits1References1
Chainguard
Chainguard
added 2025/11/07 1:30 p.m.6 views

GHSA-QW9X-CQR3-WC7R vulnerabilities

Vulnerabilities for packages: grafana-alloy, node-feature-discovery-fips, rancher-agent, rancher, sriov-network-device-plugin-fips, nvidia-container-toolkit, cluster-autoscaler-fips, podman, cluster-autoscaler, rke2-runtime, k3s, buildah, eks-distro-fips, kubernetes-fips,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2025/11/07 1:30 p.m.5 views

GHSA-CGRX-MC8F-2PRM vulnerabilities

Vulnerabilities for packages: datadog-agent, skaffold, osv-scanner, kubernetes-csi-driver-nfs-fips, mesosphere-vsphere-csi, cloudbeat-fips, spegel-fips, prometheus-node-exporter-fips, prometheus-podman-exporter-fips, kubernetes-csi-driver-nfs, kubescape, blob-csi, spegel, zot, k8s-device-plugin,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2025/11/07 1:30 p.m.11 views

GHSA-9493-H29P-RFM2 vulnerabilities

Vulnerabilities for packages: grafana-alloy, node-feature-discovery-fips, rancher-agent, rancher, sriov-network-device-plugin-fips, virt-handler, nvidia-container-toolkit, cluster-autoscaler-fips, virt-launcher, podman, cluster-autoscaler, rke2-runtime, k3s, virt-handler-fips, buildah,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2025/11/07 1:30 p.m.10 views

CVE-2025-31133 vulnerabilities

Vulnerabilities for packages: grafana-alloy, node-feature-discovery-fips, rancher-agent, rancher, sriov-network-device-plugin-fips, virt-handler, nvidia-container-toolkit, cluster-autoscaler-fips, virt-launcher, podman, cluster-autoscaler, rke2-runtime, k3s, virt-handler-fips, buildah,...

7.8CVSS7.1AI score0.0067EPSS
Exploits2
Chainguard
Chainguard
added 2025/11/07 1:30 p.m.9 views

CVE-2025-52881 vulnerabilities

Vulnerabilities for packages: datadog-agent, skaffold, osv-scanner, kubernetes-csi-driver-nfs-fips, mesosphere-vsphere-csi, cloudbeat-fips, spegel-fips, prometheus-node-exporter-fips, prometheus-podman-exporter-fips, kubernetes-csi-driver-nfs, kubescape, blob-csi, spegel, zot, k8s-device-plugin,...

7.5CVSS7AI score0.00523EPSS
Exploits1
Chainguard
Chainguard
added 2025/11/07 1:30 p.m.7 views

CVE-2025-52565 vulnerabilities

Vulnerabilities for packages: grafana-alloy, node-feature-discovery-fips, rancher-agent, rancher, sriov-network-device-plugin-fips, nvidia-container-toolkit, cluster-autoscaler-fips, podman, cluster-autoscaler, rke2-runtime, k3s, buildah, eks-distro-fips, kubernetes-fips,...

8.4CVSS6.5AI score0.00523EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2020-5578

Malware in sbrugna...

7.3CVSS7.3AI score0.00985EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-5522

Malware in sbrugna...

5.3CVSS4.8AI score0.00877EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-1545

Malicious code in bioql PyPI...

9CVSS9AI score0.01479EPSS
Exploits2References11
Rows per page
Query Builder