49 matches found
GHSA-G3XR-5W5J-W4Q4 vulnerabilities
Vulnerabilities for packages: external-dns-fips, external-dns...
CVE-2026-50149 vulnerabilities
Vulnerabilities for packages: external-dns-fips, external-dns...
CVE-2026-50149 vulnerabilities
Vulnerabilities for packages: external-dns...
GHSA-G3XR-5W5J-W4Q4 vulnerabilities
Vulnerabilities for packages: external-dns...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: commercial-grafana, omnictl-multiarch-fips, kube-arangodb-fips, gatekeeper-fips, tekton-pipelines-fips, gitea-fips, drone, elastic-agent-fips, gitlab-kas, argo-workflows-fips, knative-eventing-fips, fscrypt, skaffold-fips, mattermost-fips, opentofu-fips,...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: trivy-operator, nerdctl, istio, zarf, k9s, flux-source-controller, kubernetes-dashboard, kaf, loki, external-dns, kine, helm, spire-server, containerd, kubernetes, minio, zot, prometheus, osv-scanner, vitess, gitea, argo-cd, telegraf, flux, prometheus-operator, aactl...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: terragrunt, kaf, witness, ksops, terraform-provider-tls, teleport, helm, zot, prometheus, crossplane-provider-family-azure, gitea, k8sgpt, steampipe, grype, terraform-provider-azurerm, cosign, flux, prometheus-operator, aactl, cilium, chisel, trivy, kyverno,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: nerdctl, istio, docker-cli-buildx, kubernetes-dashboard, kaf, loki, external-dns, teleport, kine, helm, spire-server, containerd, kubernetes, minio, zot, prometheus, podman, vitess, argo-cd, telegraf, flux, prometheus-operator, aactl, cilium, gitlab-kas, cert-manager...
GHSA-X4MJ-7F9G-29H4 vulnerabilities
Vulnerabilities for packages: external-dns-fips, k8sgateway, k8sgateway-fips, external-dns...
GHSA-X4MJ-7F9G-29H4 vulnerabilities
Vulnerabilities for packages: k8sgateway, external-dns...
CVE-2026-41246 vulnerabilities
Vulnerabilities for packages: k8sgateway, external-dns...
CVE-2026-41246 vulnerabilities
Vulnerabilities for packages: external-dns-fips, k8sgateway, k8sgateway-fips, external-dns...
CLEANSTART-2026-HA09227 Security fixes for CVE-2025-47911, CVE-2025-47913, CVE-2025-47914, CVE-2025-58181, CVE-2025-58190, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2025-61732, CVE-2025-68121, CVE-2026-25679, CVE-2026-27137, CVE-2026-27138, CVE-2026-27139, CVE-2026-27141, CVE-2026-27142, CVE-2026-33186, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 0.18.0-r0, 0.18.0-r1
Multiple security vulnerabilities affect the external-dns package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: secrets-store-csi-driver-provider-aws-fips, promxy, cerbos, temporal-server, langfuse-fips, crossplane-provider-aws-kinesis, azurefile-csi, neuvector, secrets-store-csi-driver, gitlab-pages, secrets-store-csi-driver-provider-gcp-fips, sops, vault-benchmark,...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: kor, secrets-store-csi-driver-provider-aws-fips, promxy, cerbos, dragonfly-operator-fips, langfuse-fips, temporal-server, cluster-api-ipam-provider-in-cluster, aws-privateca-issuer, crossplane-provider-aws-kinesis, nri-rabbitmq-fips, azurefile-csi, neuvector,...
CLEANSTART-2026-ER42900 ParseAddress function constructs domain-literal address components through repeated string concatenation
Multiple security vulnerabilities affect the external-dns-fips package. The ParseAddress function constructs domain-literal address components through repeated string concatenation. See references for individual vulnerability details...
CVE-2025-13147 External Service Interaction (DNS)
Server-Side Request Forgery SSRF vulnerability in Progress MOVEit Transfer.This issue affects MOVEit Transfer: before 2024.1.8, from 2025.0.0 before 2025.0.4...
FreeBSD : zeek -- information leak vulnerability (50fd6a75-0587-4987-bef2-bb933cd78ea1)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 50fd6a75-0587-4987-bef2-bb933cd78ea1 advisory. Tim Wojtulewicz of Corelight reports: The KRB analyzer can leak information about hosts in analyzed...
SUSE CVE-2025-47282
Gardener External DNS Management is an environment to manage external DNS entries for a kubernetes cluster. A security vulnerability was discovered in Gardener's External DNS Management prior to version 0.23.6 that could allow a user with administrative privileges for a Gardener project or a user...
GO-2025-3697 Gardener External DNS Management allows malicious google credential in DNS secret to lead to privilege escalation in github.com/gardener/external-dns-management
Gardener External DNS Management allows malicious google credential in DNS secret to lead to privilege escalation in github.com/gardener/external-dns-management...