21 matches found
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: backup-restore-operator, telegraf, k3s, coder, seaweedfs-rocksdb, cloud-provider-aws, kubescape-server, gitlab-kas, kubescape-server-fips, loki, prometheus-mongodb-exporter, osv-scanner, kubernetes-dashboard, knative-eventing-fips, opentofu,...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: opentelemetry-collector, osv-scanner, cert-manager, rancher, cloud-provider-aws, trivy, flux-source-controller, vitess, kots, k3s, kaf, cilium, skaffold, chisel, kyverno, spire-server, istio, prometheus, prometheus-operator, argo-cd, containerd, gitea, fscrypt, loki,...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: scorecard, podman, rancher, kargo, hcloud, flux-source-controller, falcoctl, step-issuer, vitess, flux-notification-controller, steampipe, gatus, istio, prometheus, caddy, melange, loki, gitlab-runner, argo-events, act, grype, openbao, pulumi-kubernetes-operator,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: podman, opentelemetry-collector, teleport, cert-manager, rancher, cloud-provider-aws, vitess, kots, k3s, kaf, cilium, kyverno, spire-server, istio, prometheus, prometheus-operator, docker-cli-buildx, argo-cd, containerd, fscrypt, buildah, loki, telegraf, zot,...
GHSA-F5WC-C3C7-36MC vulnerabilities
Vulnerabilities for packages: scorecard, podman, rancher, flux-source-controller, step-issuer, vitess, istio, prometheus, caddy, melange, loki, argo-events, openbao, act, grype, pulumi-kubernetes-operator, nuclei, zarf, minio, flux-image-automation-controller, rancher-agent, flux, kine,...
GHSA-J88V-2CHJ-QFWX vulnerabilities
Vulnerabilities for packages: kube-bench, teleport, openfga, wal-g, flyte, juicefs, keda, sftpgo-plugin-eventstore, step-issuer, gitaly, k3s, falcosidekick, spire-server, argo-workflows, kuma, sqlexporter, steampipe, certificate-transparency, grafana-alloy, hydra, step, kubeflow-pipelines, bento,...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: scorecard, percona-server-mongodb-operator, rancher, falcoctl, step-issuer, gitaly, cortex, nri-couchbase, cue, gatus, influx, neuvector-scanner, gostatsd, knative-eventing, prometheus, govulncheck, kyverno-policy-reporter-kyverno-plugin, pluto, aws-flb-cloudwatch,...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: percona-server-mongodb-operator, rancher, falcoctl, step-issuer, gitaly, cortex, nri-couchbase, influx, terraform-provider-grafana, knative-eventing, prometheus, kyverno-policy-reporter-kyverno-plugin, pluto, oauth2-proxy, cilium-envoy, x509-certificate-exporter,...
GHSA-J3GX-2473-5FP8 vulnerabilities
Vulnerabilities for packages: percona-server-mongodb-operator, rancher, falcoctl, step-issuer, gitaly, cortex, nri-couchbase, influx, terraform-provider-grafana, knative-eventing, prometheus, kyverno-policy-reporter-kyverno-plugin, pluto, oauth2-proxy, cilium-envoy, x509-certificate-exporter,...
GHSA-RV83-G57W-FR8J vulnerabilities
Vulnerabilities for packages: render-template, percona-server-mongodb-operator, rancher, falcoctl, step-issuer, gitaly, cortex, nri-couchbase, influx, terraform-provider-grafana, knative-eventing, prometheus, kyverno-policy-reporter-kyverno-plugin, pluto, oauth2-proxy, cilium-envoy,...
CVE-2026-27142 vulnerabilities
Vulnerabilities for packages: modelmesh-runtime-adapter, falco-no-driver, crossplane-provider-aws-cloudformation, blob-csi, crossplane-provider-aws-cloudwatchlogs, rancher, secrets-store-csi-driver-provider-azure, flux-source-controller, falcoctl, kubevela, step-issuer, gitaly,...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: modelmesh-runtime-adapter, falco-no-driver, crossplane-provider-aws-cloudformation, blob-csi, crossplane-provider-aws-cloudwatchlogs, rancher, secrets-store-csi-driver-provider-azure, flux-source-controller, falcoctl, kubevela, step-issuer, gitaly,...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer-fips, crossplane-provider-aws-cloudformation-fips, swagger, rancher-telemetry, sftpgo-plugin-pubsub, backup-restore-operator-fips, src, boring-registry, victoriametrics-cluster-fips, volcano, cloud-provider-aws,...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer-fips, crossplane-provider-aws-cloudformation-fips, swagger, src, sftpgo-plugin-pubsub, backup-restore-operator-fips, boring-registry, ingress-nginx-controller-fips, libnvidia-container, vault-fips, gitaly, gitlab-kas, neuvector-fips,...
CVE-2024-5469
DoS in KAS in GitLab CE/EE affecting all versions from 16.10.0 prior to 16.10.6 and 16.11.0 prior to 16.11.3 allows an attacker to crash KAS via crafted gRPC requests...
GHSA-Q9W6-CWJ4-GF4P vulnerabilities
Vulnerabilities for packages: temporal, temporal-ui-server, temporal-server, temporal-server-fips, temporal-ui-server-fips, temporal-fips...
GHSA-Q9W6-CWJ4-GF4P vulnerabilities
Vulnerabilities for packages: temporal-ui-server, temporal-server, temporal...
CVE-2025-1243 vulnerabilities
Vulnerabilities for packages: temporal-ui-server, temporal-server, temporal...
GHSA-RCJV-MGP8-QVMR vulnerabilities
Vulnerabilities for packages: buildkitd, kubernetes-fips, rancher-webhook, rancher-webhook-fips, k3s, kubernetes, up, cert-manager, kube-oidc-proxy, kubevela, metrics-server-fips, prometheus-adapter, caddy...
CVE-2023-45142 vulnerabilities
Vulnerabilities for packages: buildkitd, kubernetes-fips, rancher-webhook, rancher-webhook-fips, k3s, kubernetes, up, cert-manager, kube-oidc-proxy, kubevela, metrics-server-fips, prometheus-adapter, caddy...