CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Chainguard•added 7 hours ago•4 views

GHSA-XHF5-7WJV-PQXP vulnerabilities

5.8AI score

OSV•added 2026/04/01 10:7 a.m.•5 views

CLEANSTART-2026-PF41398 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2025-61732, CVE-2025-68121 applied in versions: 3.19.0-r0, 3.19.5-r0, 4.0.1-r0

Multiple security vulnerabilities affect the helm-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.8AI score0.00765EPSS

Exploits3References25

OSV•added 2026/04/01 10:7 a.m.•5 views

CLEANSTART-2026-UJ10620 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2025-61732, CVE-2025-68121, CVE-2026-1229, ghsa-q9hv-hpm4-hj6x applied in versions: 3.19.0-r0, 4.0.1-r0, 4.0.5-r0, 4.0.5-r1

Multiple security vulnerabilities affect the helm-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.9AI score0.00765EPSS

Exploits3References28

OSV•added 2026/04/01 9:24 a.m.•8 views

CLEANSTART-2026-OT07577 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2026-1229 applied in versions: 3.19.0-r0, 4.0.1-r0, 4.1.0-r0

Multiple security vulnerabilities affect the helm-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

9.8CVSS6.9AI score0.00586EPSS

Exploits2References23

Chainguard•added 2026/02/26 7:17 p.m.•9 views

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: melange, kubescape-server-fips, trivy-operator, crossplane-provider-aws-ecr, flux-source-controller, image-factory-fips, crossplane-provider-aws-sqs-fips, crossplane-provider-azure-managedidentity, image-factory, crossplane-provider-aws-cognitoidentity,...

9.8CVSS7.3AI score0.00397EPSS

OSV•added 2026/02/25 12:50 a.m.•2 views

CLEANSTART-2026-VZ85637 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...

OSV•added 2026/02/25 12:49 a.m.•1 views

CLEANSTART-2026-IG94553 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

OSV•added 2026/01/30 3:30 p.m.•4 views

CLEANSTART-2026-UR80185 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

9.8CVSS5.6AI score0.00586EPSS

OSV•added 2026/01/30 3:24 p.m.•2 views

CLEANSTART-2026-FS64938 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

9.8CVSS5.6AI score0.00586EPSS

OSV•added 2026/01/30 3:24 p.m.•4 views

CLEANSTART-2026-HX78047 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

9.8CVSS5.6AI score0.00586EPSS

OSV•added 2026/01/30 3:23 p.m.•0 views

CLEANSTART-2026-JR37040 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

OSV•added 2026/01/30 3:23 p.m.•9 views

CLEANSTART-2026-TL71584 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

9.8CVSS5.6AI score0.00451EPSS

Exploits2References9

OSV•added 2026/01/30 3:23 p.m.•0 views

CLEANSTART-2026-EL98016 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

OSV•added 2026/01/30 3:22 p.m.•3 views

CLEANSTART-2026-GS02052 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

Chainguard•added 2024/12/11 10:3 p.m.•10 views

GHSA-V778-237X-GJRC vulnerabilities

Vulnerabilities for packages: chartmuseum-fips, flux-source-controller, skopeo, grpc-health-probe-fips, crossplane-provider-gcp, cortex-fips, amazon-cloudwatch-agent-fips, flux-image-automation-controller-fips, oras, spire-server, weaviate, gatekeeper, secrets-store-csi-driver-provider-gcp,...

5.8AI score

Chainguard•added 2024/07/02 10:15 p.m.•18 views

CVE-2024-24791 vulnerabilities

Vulnerabilities for packages: chartmuseum-fips, flux-source-controller, skopeo, golangci-lint, grpc-health-probe-fips, whereabouts-fips, wave-fips, cortex-fips, regclient, oras, weaviate, gatekeeper, secrets-store-csi-driver-provider-gcp, nuclei, prometheus-postgres-exporter, go-bindata,...

7.5CVSS6.6AI score0.01414EPSS

Chainguard•added 2024/06/05 4:15 p.m.•21 views

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: skopeo, flux-source-controller, golangci-lint, grpc-health-probe-fips, crossplane-provider-gcp, wave-fips, cortex-fips, regclient, oras, spire-server, weaviate, gatekeeper, secrets-store-csi-driver-provider-gcp, prometheus-postgres-exporter, go-bindata,...

5.5CVSS6.6AI score0.00443EPSS

Chainguard•added 2024/02/01 5:15 p.m.•46 views

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: nerdctl, ctop, bom, datadog-agent, datadog-agent-fips, gitsign, k3d, kargo, skopeo, loki, up, vexctl, chartmuseum, argo-workflows-fips, newrelic-infrastructure-agent, zarf, kubeflow-katib, timoni, docker-machine-driver-harvester, policy-controller, buildkitd,...

7.8CVSS6.8AI score0.00258EPSS