19 matches found
GHSA-XHF5-7WJV-PQXP vulnerabilities
Vulnerabilities for packages: datadog-agent, skaffold, kube-mgmt-fips, harvester, cloudbeat-fips, helm-fips, spegel-fips, kubescape-server, consul-k8s, buildkitd-fips, chartmuseum-fips, kubescape, docker-compose, kubevela, spegel, zot, trivy-operator, k9s, google-osconfig-agent, trivy-fips,...
GHSA-JPCC-P29G-P8MQ vulnerabilities
Vulnerabilities for packages: datadog-agent, skaffold, kube-mgmt-fips, harvester, cloudbeat-fips, helm-fips, spegel-fips, kubescape-server, consul-k8s, buildkitd-fips, chartmuseum-fips, kubescape, docker-compose, kubevela, spegel, zot, trivy-operator, k9s, google-osconfig-agent, trivy-fips,...
CLEANSTART-2026-PF41398 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2025-61732, CVE-2025-68121 applied in versions: 3.19.0-r0, 3.19.5-r0, 4.0.1-r0
Multiple security vulnerabilities affect the helm-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-UJ10620 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2025-61732, CVE-2025-68121, CVE-2026-1229, ghsa-q9hv-hpm4-hj6x applied in versions: 3.19.0-r0, 4.0.1-r0, 4.0.5-r0, 4.0.5-r1
Multiple security vulnerabilities affect the helm-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-OT07577 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2026-1229 applied in versions: 3.19.0-r0, 4.0.1-r0, 4.1.0-r0
Multiple security vulnerabilities affect the helm-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: apko, datadog-agent, skaffold, osv-scanner, cloudbeat-fips, helm-fips, image-factory, ratify, tekton-pipelines, tfsec, kubescape-server, terraform-provider-azuread, buildkitd-fips, nuclei, crossplane-provider-aws-memorydb, trufflehog, kubescape, kubevela,...
CLEANSTART-2026-VZ85637 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-IG94553 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-UR80185 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-FS64938 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-HX78047 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-TL71584 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-JR37040 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-EL98016 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
CLEANSTART-2026-GS02052 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
GHSA-V778-237X-GJRC vulnerabilities
Vulnerabilities for packages: spicedb, secrets-store-csi-driver, osv-scanner, docker-credential-acr-env, vendir, dcgm-exporter, consul-k8s, oras, azcopy-fips, docker-compose, traefik-fips, kubernetes-dashboard, dagdotdev, sftpgo-plugin-eventsearch, spegel, dex-k8s-authenticator, ferretdb,...
CVE-2024-24791 vulnerabilities
Vulnerabilities for packages: spicedb, secrets-store-csi-driver, osv-scanner, docker-credential-acr-env, up, smarter-device-manager-fips, paranoia, nri-kubernetes, addon-resizer-fips, nodetaint, oras, pombump, azcopy-fips, pluto, docker-compose, kubernetes-dashboard,...
CVE-2024-24789 vulnerabilities
Vulnerabilities for packages: spicedb, aws-flb-firehose-fips, osv-scanner, docker-credential-acr-env, secrets-store-csi-driver, up, smarter-device-manager-fips, paranoia, nri-kubernetes, addon-resizer-fips, nodetaint, oras, pombump, pluto, docker-compose, kubernetes-dashboard,...
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: flux-image-reflector-controller, datadog-agent, skaffold, slsa-verifier, helm-fips, docker-machine-driver-harvester, up, cri-tools, guac, eksctl, ko-fips, nerdctl, newrelic-infrastructure-agent, scorecard, bom, kots, cosign-fips, helm, rancher-machine, aactl,...