CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

62 matches found

Chainguard•added 4 days ago•6 views

GHSA-XHF5-7WJV-PQXP vulnerabilities

Vulnerabilities for packages: trivy-operator-fips, chainctl-fips, datadog-agent-fips, linkerd2-fips, cluster-api-helm-controller, grype-fips, kubescape-operator-fips, neuvector-scanner-fips, kube-arangodb, consul-k8s-fips, gatekeeper, crossplane-fips, scorecard, helmfile, buildkitd-fips,...

Wolfi•added 2026/05/22 7:48 p.m.•23 views

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: steampipe, rancher-helm, scorecard, helm-push, osv-scanner, consul-k8s, rancher-agent, kubescape-operator, containerd, tw, skaffold, ctop, helm-operator, opa, zarf, gatekeeper, eksctl, k9s, neuvector-scanner, manifest-tool, chartmuseum, kaniko, kots, docker-cli-build...

5.8AI score0.00019EPSS

Wolfi•added 2026/05/22 7:48 p.m.•24 views

GHSA-FQW6-GF59-QR4W vulnerabilities

Vulnerabilities for packages: steampipe, rancher-helm, scorecard, helm-push, osv-scanner, consul-k8s, rancher-agent, kubescape-operator, containerd, tw, skaffold, ctop, helm-operator, opa, zarf, gatekeeper, eksctl, k9s, neuvector-scanner, manifest-tool, chartmuseum, kaniko, kots, docker-cli-build...

Chainguard•added 2026/05/22 7:17 p.m.•12 views

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: trivy-operator-fips, chainctl-fips, datadog-agent-fips, linkerd2-fips, cluster-api-helm-controller, grype-fips, opa-fips, kubescape-operator-fips, neuvector-scanner-fips, kube-arangodb, consul-k8s-fips, gatekeeper, opa-envoy, scorecard, containerd, osv-scanner,...

5.8AI score0.00019EPSS

Wolfi•added 2026/04/11 2:41 p.m.•6 views

CVE-2026-35206 vulnerabilities

Vulnerabilities for packages: harbor, helm-push, consul-k8s, tw, helm-operator, zarf, nova, eksctl, cert-manager-cmctl, k9s, pluto, istio, chartmuseum, kots, helm-set-status, kubescape, tigera-operator, linkerd2, headlamp, k8ssandra-client, cluster-api-helm-controller, kuma, cerbos, envoy-gateway...

4.8CVSS5.8AI score0.00199EPSS

Wolfi•added 2026/04/11 2:41 p.m.•6 views

GHSA-HR2V-4R36-88HR vulnerabilities

Vulnerabilities for packages: harbor, helm-push, consul-k8s, tw, helm-operator, zarf, nova, eksctl, cert-manager-cmctl, k9s, pluto, istio, chartmuseum, kots, helm-set-status, kubescape, tigera-operator, linkerd2, headlamp, k8ssandra-client, cluster-api-helm-controller, kuma, cerbos, envoy-gateway...

Wolfi•added 2026/04/11 2:51 a.m.•7 views

GHSA-FV83-X2XW-2J55 vulnerabilities

Vulnerabilities for packages: rabbitmq-messaging-topology-operator, newrelic-k8s-metadata-injection, apko, osv-scanner, aws-network-policy-agent, nodetaint, smokescreen, flux-helm-controller, temporal, goreleaser, dkron, clickhouse-operator, dataplaneapi, ingress-nginx-controller, metacontroller,...

Wolfi•added 2026/02/26 7:48 p.m.•9 views

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: guac, sops, wal-g, gptscript, vcluster, crossplane-provider-aws-rds, trufflehog, policy-controller, argo-events, syft, crossplane-provider-aws-sqs, witness, crossplane-provider-azure-managedidentity, kubevela, pulumi-language-dotnet, kyverno,...

9.8CVSS6.7AI score0.00397EPSS

Wolfi•added 2026/02/26 7:48 p.m.•9 views

GHSA-Q9HV-HPM4-HJ6X vulnerabilities

Vulnerabilities for packages: guac, sops, wal-g, gptscript, vcluster, crossplane-provider-aws-rds, trufflehog, policy-controller, argo-events, syft, crossplane-provider-aws-sqs, witness, crossplane-provider-azure-managedidentity, kubevela, pulumi-language-dotnet, kyverno,...

Chainguard•added 2026/02/10 1:17 p.m.•4 views

GHSA-8JVR-VH7G-F8GX vulnerabilities

Vulnerabilities for packages: gitlab-runner-fips, livekit-server, k8s-device-plugin-fips, crossplane-provider-aws-lambda, nfs-subdir-external-provisioner, timescaledb-tune, kube-logging-operator, kubelet-csr-approver-fips, tofu-controller, docker-machine-driver-linode, crossplane-provider-sql,...

OSV•added 2025/12/02 5:36 p.m.•2 views

BIT-FLUX-2022-36049 Flux2 Helm Controller denial of service

Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...

7.7CVSS6.6AI score0.01007EPSS

Exploits0References5

OSV•added 2025/12/02 5:36 p.m.•4 views

BIT-FLUX-2022-24817 Improper kubeconfig validation allows arbitrary code execution

Flux2 is an open and extensible continuous delivery solution for Kubernetes. Flux2 versions between 0.1.0 and 0.29.0, helm-controller 0.1.0 to v0.19.0, and kustomize-controller 0.1.0 to v0.23.0 are vulnerable to Code Injection via malicious Kubeconfig. In multi-tenancy deployments this can also...

9.9CVSS7.3AI score0.01022EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•8 views

EUVD-2022-6887

Malicious code in bioql PyPI...

7.7CVSS7.7AI score0.01007EPSS

Exploits0References6

Chainguard•added 2025/09/24 2:18 p.m.•7 views

GHSA-8PJC-487G-W6P2 vulnerabilities

Vulnerabilities for packages: flux, cerbos, timescaledb-tune, kube-logging-operator, cluster-api-helm-controller, undock, apm-server, mongo-tools, harbor, karpenter, vitess, docker-cli, knative-serving, terraform-provider-azapi, tkn, polaris, kubernetes-csi-driver-hostpath, clickhouse-operator,...

Wolfi•added 2025/08/15 7:48 p.m.•14 views

CVE-2025-55199 vulnerabilities

Vulnerabilities for packages: harbor, helm-push, consul-k8s, tw, flux-helm-controller, helm-operator, zarf, nova, eksctl, cert-manager-cmctl, k9s, pluto, istio, chartmuseum, kots, kargo, helm-set-status, kubescape, linkerd2, headlamp, k8ssandra-client, cluster-api-helm-controller, kuma, cerbos,...

6.5CVSS6.6AI score0.00311EPSS

Wolfi•added 2025/08/15 7:48 p.m.•16 views

CVE-2025-55198 vulnerabilities

Vulnerabilities for packages: harbor, helm-push, consul-k8s, flux-helm-controller, helm-operator, zarf, nova, eksctl, cert-manager-cmctl, k9s, pluto, istio, chartmuseum, kots, kargo, helm-set-status, kubescape, linkerd2, headlamp, k8ssandra-client, cluster-api-helm-controller, kuma, cerbos,...

6.5CVSS6.6AI score0.00311EPSS

Wolfi•added 2025/08/15 7:48 p.m.•5 views

GHSA-F9F8-9PMF-XV68 vulnerabilities

Vulnerabilities for packages: harbor, helm-push, consul-k8s, flux-helm-controller, helm-operator, zarf, nova, eksctl, cert-manager-cmctl, k9s, pluto, istio, chartmuseum, kots, kargo, helm-set-status, kubescape, linkerd2, headlamp, k8ssandra-client, cluster-api-helm-controller, kuma, cerbos,...

Wolfi•added 2025/08/15 7:47 p.m.•4 views

GHSA-9H84-QMV7-982P vulnerabilities

Vulnerabilities for packages: harbor, helm-push, consul-k8s, tw, flux-helm-controller, helm-operator, zarf, nova, eksctl, cert-manager-cmctl, k9s, pluto, istio, chartmuseum, kots, kargo, helm-set-status, kubescape, linkerd2, headlamp, k8ssandra-client, cluster-api-helm-controller, kuma, cerbos,...

Chainguard•added 2025/04/12 1:13 p.m.•28 views

CVE-2025-32387 vulnerabilities

Vulnerabilities for packages: flux, helm-operator-fips, chartmuseum-fips, flux-source-controller-fips, pluto, cluster-api-helm-controller, flux-helm-controller, cilium-cli, harbor, eksctl, cert-manager-cmctl-fips, cluster-api-helm-controller-fips, cert-manager-cmctl, chart-testing-fips, kots,...

6.5CVSS6.6AI score0.00383EPSS

Chainguard•added 2025/04/12 1:13 p.m.•16 views

CVE-2025-32386 vulnerabilities

Vulnerabilities for packages: flux, helm-operator-fips, chartmuseum-fips, flux-source-controller-fips, pluto, cluster-api-helm-controller, flux-helm-controller, cilium-cli, harbor, eksctl, cert-manager-cmctl-fips, cluster-api-helm-controller-fips, cert-manager-cmctl, chart-testing-fips, kots,...

6.5CVSS6.6AI score0.00357EPSS

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by