14 matches found
GHSA-FV83-X2XW-2J55 vulnerabilities
Vulnerabilities for packages: clickhouse-operator, nova, aws-privateca-issuer, rabbitmq-messaging-topology-operator, victoriametrics-cluster, victoriametrics, mountpoint-s3-csi-driver, nfs-subdir-external-provisioner, spire-server, go, newrelic-infra-operator, gh, omnibump, supercronic,...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, terraform-docs, spark-operator, pgpool2exporter, gobuster, mkcert, act, aws-sigv4-proxy, zot, portieris, nri-discovery-kubernetes, knative-eventing, kafka-proxy, x509-certificate-exporter, kuberay-operator, bazelisk, snyk-cli,...
CLEANSTART-2026-YL47233 Security fixes for CVE-2025-47911, CVE-2025-58190, CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-61732, CVE-2025-68119, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-9h8m-3fm2-qjrq, ghsa-p77j-4mvh-x3m3 applied in versions: 0.0.0_git20251231-r0, 0.0.0_git20251231-r1
Multiple security vulnerabilities affect the envoy-ratelimit package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: kyverno-policy-reporter-ui, volume-modifier-for-k8s, cephcsi, dcgm-exporter-fips, flannel-fips, crossplane-fips, k6-fips, lvm-driver, verticadb-operator, cloud-provider-azure-fips, contour, falco-no-driver, boring-registry, spire-controller-manager-fips,...
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: wait-for-port, q, k3s, cluster-proportional-autoscaler, kubernetes-dashboard, protoc-gen-go-grpc, terraform-docs, trillian, spark-operator, aws-flb-cloudwatch, nri-nginx, kubebuilder, sbom-scorecard, gobuster, sonobuoy, nri-memcached, go-licenses, prometheus-operator...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: wait-for-port, q, k3s, cluster-proportional-autoscaler, kubernetes-dashboard, protoc-gen-go-grpc, terraform-docs, trillian, spark-operator, aws-flb-cloudwatch, nri-nginx, kubebuilder, sbom-scorecard, gobuster, sonobuoy, nri-memcached, go-licenses, prometheus-operator...
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: kyverno-policy-reporter-ui, volume-modifier-for-k8s, contour, boring-registry, kubeflow, cri-tools, temporal-server-fips, gcsfuse, kubernetes-dashboard-metrics-scraper-fips, zot, trillian, hugo-extended, prometheus-node-exporter, crossplane-provider-aws-dynamodb,...
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: k3s, cluster-proportional-autoscaler, crossplane-provider-aws-s3, kubernetes-dashboard, protoc-gen-go-grpc, terraform-docs, rabbitmq-messaging-topology-operator, pgpool2exporter, spark-operator, trillian, secrets-store-csi-driver, weaviate, sonobuoy,...
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: wait-for-port, q, k3s, cluster-proportional-autoscaler, kubernetes-dashboard, protoc-gen-go-grpc, terraform-docs, trillian, spark-operator, aws-flb-cloudwatch, nri-nginx, kubebuilder, sbom-scorecard, gobuster, sonobuoy, nri-memcached, go-licenses, prometheus-operator...
CVE-2023-47108 vulnerabilities
Vulnerabilities for packages: cri-tools, envoy-ratelimit, buildkitd, k3s, kubernetes, kubernetes-csi-external-resizer, temporal, volume-modifier-for-k8s, kine, temporal-server, metrics-server, kubescape, kubevela, docker-compose...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: prometheus-stackdriver-exporter, buildkitd, aws-efs-csi-driver-fips, up, dynamic-localpv-provisioner-fips, prometheus-adapter-fips, kubernetes-csi-livenessprobe, prometheus-blackbox-exporter, src, terraform-provider-sendgrid, kubernetes-csi-livenessprobe-fips,...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: buildkitd, terraform-provider-sendgrid, spark-operator, aactl, dgraph, kubescape, prometheus-blackbox-exporter, cortex, scorecard, falco, slsa-verifier, k3d, src, kubevela, kubeflow, up...
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: spark-operator, weaviate, secrets-store-csi-driver, gobuster, sigstore-scaffolding, aactl, kpt, dynamic-localpv-provisioner, envoy-ratelimit, cortex, kubewatch, node-problem-detector, nri-prometheus, nghttp2, prometheus-blackbox-exporter, nginx-mainline,...
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: spark-operator, weaviate, secrets-store-csi-driver, gobuster, sigstore-scaffolding, aactl, kpt, dynamic-localpv-provisioner, envoy-ratelimit, cortex, kubewatch, node-problem-detector, nri-prometheus, nghttp2, prometheus-blackbox-exporter, nginx-mainline,...