16 matches found
CVE-2026-11769
We have released version 5.24.0 of the Grafana Operator. This patch includes a CRITICAL severity security fix for a path traversal/privilege escalation vulnerability in the Grafana Operator. Summary The Grafana Operator supports loading dashboards & library panels using the jsonnet data templatin...
CVE-2026-11769
Grafana Operator CVE-2026-11769 affects all versions
EUVD-2026-36641
We have released version 5.24.0 of the Grafana Operator. This patch includes a CRITICAL severity security fix for a path traversal/privilege escalation vulnerability in the Grafana Operator. Summary The Grafana Operator supports loading dashboards & library panels using the jsonnet data templatin...
CVE-2026-11769 Operator - Namespaced User Path Traversal
We have released version 5.24.0 of the Grafana Operator. This patch includes a CRITICAL severity security fix for a path traversal/privilege escalation vulnerability in the Grafana Operator. Summary The Grafana Operator supports loading dashboards & library panels using the jsonnet data templatin...
CVE-2026-11769 Operator - Namespaced User Path Traversal
We have released version 5.24.0 of the Grafana Operator. This patch includes a CRITICAL severity security fix for a path traversal/privilege escalation vulnerability in the Grafana Operator. Summary The Grafana Operator supports loading dashboards & library panels using the jsonnet data templatin...
PT-2026-49078
We have released version 5.24.0 of the Grafana Operator. This patch includes a CRITICAL severity security fix for a path traversal/privilege escalation vulnerability in the Grafana Operator. Summary The Grafana Operator supports loading dashboards & library panels using the jsonnet data templatin...
GHSA-FV83-X2XW-2J55 vulnerabilities
Vulnerabilities for packages: flux-source-controller-fips, nfs-subdir-external-provisioner, actions-runner-controller, oras-fips, hubble, flux-source-watcher-fips, karpenter-fips, supercronic-fips, mariadb-operator, podinfo-fips, oras, sealed-secrets-fips, metacontroller, atlas-fips, temporal,...
CVE-2026-33810 vulnerabilities
Vulnerabilities for packages: flux-source-controller-fips, nfs-subdir-external-provisioner, actions-runner-controller, oras-fips, hubble, flux-source-watcher-fips, karpenter-fips, supercronic-fips, mariadb-operator, podinfo-fips, oras, sealed-secrets-fips, metacontroller, atlas-fips, temporal,...
CVE-2026-32288 vulnerabilities
Vulnerabilities for packages: rancher-helm, vault-benchmark, oras-fips, amazon-ssm-agent-fips, rclone-fips, helm-fips, kbld, trivy-fips, zot, kbld-fips, jfrog-cli, rancher-agent, vault, mattermost, ko, falcoctl-fips, localstack, aws-flb-kinesis, opa-fips-envoy, kubernetes-csi-driver-nfs,...
GHSA-X4JJ-H2V8-HQQV vulnerabilities
Vulnerabilities for packages: rancher-helm, vault-benchmark, oras-fips, amazon-ssm-agent-fips, rclone-fips, helm-fips, kbld, trivy-fips, zot, kbld-fips, jfrog-cli, rancher-agent, vault, mattermost, ko, falcoctl-fips, localstack, aws-flb-kinesis, opa-fips-envoy, kubernetes-csi-driver-nfs,...
GHSA-5W89-2C2X-6X66 vulnerabilities
Vulnerabilities for packages: onepassword-operator, protoc-gen-go-grpc, helm-fips, nfs-subdir-external-provisioner-fips, zot, harbor-scanner-trivy-fips, apache-beam-java-sdk, wazero, ko, falcoctl-fips, git-lfs, whereabouts-fips, mariadb-operator-fips, gpu-operator, localstack, cni-plugins-fips,...
GHSA-GJVH-7JH8-7XHM vulnerabilities
Vulnerabilities for packages: rancher-helm, conjur-cli, kubernetes-dashboard-metrics-scraper, loki-fips, otel-cli, onepassword-operator, monstache, k8s-device-plugin-fips, vault-benchmark, oras-fips, amazon-ssm-agent-fips, db-operator, rclone-fips, emissary, helm-fips,...
CVE-2026-32280 vulnerabilities
Vulnerabilities for packages: rancher-helm, conjur-cli, kubernetes-dashboard-metrics-scraper, loki-fips, otel-cli, onepassword-operator, monstache, k8s-device-plugin-fips, vault-benchmark, oras-fips, amazon-ssm-agent-fips, db-operator, rclone-fips, emissary, helm-fips,...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: rancher-helm, conjur-cli, kubernetes-dashboard-metrics-scraper, loki-fips, otel-cli, onepassword-operator, monstache, k8s-device-plugin-fips, vault-benchmark, oras-fips, amazon-ssm-agent-fips, db-operator, rclone-fips, emissary, helm-fips,...
GHSA-JRG3-GFJW-HM96 vulnerabilities
Vulnerabilities for packages: rancher-helm, conjur-cli, kubernetes-dashboard-metrics-scraper, loki-fips, otel-cli, onepassword-operator, monstache, k8s-device-plugin-fips, vault-benchmark, oras-fips, amazon-ssm-agent-fips, db-operator, rclone-fips, emissary, helm-fips,...
CVE-2024-24785 vulnerabilities
Vulnerabilities for packages: k3s, task, thanos-operator, cfssl, tailscale, nri-nginx, yq, eksctl, kubebuilder, caddy, nri-mssql, haproxy-ingress, etcd, vertical-pod-autoscaler, newrelic-fluent-bit-output, nri-discovery-kubernetes, fuse-overlayfs-snapshotter, k3d, src, gke-gcloud-auth-plugin,...