Improper Removal of Sensitive Information Before Storage or Transfer

Overview Affected versions of this package are vulnerable to Improper Removal of Sensitive Information Before Storage or Transfer in the HideSecretData function that fails to mask predictedLive argument for --server-side-diff command. An attacker can extract last-applied-configuration which may...

EUVD-2023-2394

Malicious code in bioql PyPI...

PT-2025-30438 · Kyverno · Kyverno

Name of the Vulnerable Software and Affected Versions: Kyverno versions 1.14.1 and below Description: Kyverno is susceptible to a Denial of Service DoS vulnerability stemming from improper handling of JMESPath variable substitutions. Attackers possessing permissions to create or update Kyverno...

Authentication Bypass Using an Alternate Path or Channel

Overview Affected versions of this package are vulnerable to Authentication Bypass Using an Alternate Path or Channel due to improper handling of namespace selectors in the GetNamespaceSelectorsFromNamespaceLister function in labels.go. An attacker can bypass policy rules using malicious requests...

Moderate: Red Hat Security Advisory: RHV Manager (ovirt-engine) security update [ovirt-4.4.7]

Updated ovirt-engine packages that fix several bugs and add various enhancements are now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

openSUSE Security Update : vlc (openSUSE-2020-545)

This update for vlc fixes the following issues : vlc was updated to version 3.0.9.2 : + Misc: Properly bump the version in configure.ac. Changes from version 3.0.9.1 : + Misc: Fix VLSub returning 401 for earch request. Changes from version 3.0.9 : + Core: Work around busy looping when playing an...