CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: helm-push, helm-operator, docker-cli-buildx, kots, skaffold, eksctl, spegel, dagger, opa-envoy, envoy-gateway, newrelic-infrastructure-agent, headlamp, cluster-api-helm-controller, kubescape, k8sgpt, grype, kargo, containerd, syft, opa, helm-mapkubeapis, k3s,...

GHSA-FQW6-GF59-QR4W vulnerabilities

Vulnerabilities for packages: helm-push, helm-operator, docker-cli-buildx, kots, skaffold, eksctl, spegel, dagger, opa-envoy, envoy-gateway, newrelic-infrastructure-agent, headlamp, cluster-api-helm-controller, kubescape, k8sgpt, grype, kargo, containerd, syft, opa, helm-mapkubeapis, k3s,...

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: trivy, kubescape, cluster-api-helm-controller, helm-mapkubeapis, amazon-ecs-agent, grype-fips, opa, gitlab-rails-ce-fips, fuse-overlayfs-snapshotter, k8sgpt, grype, steampipe, buildkitd, spegel-fips, kube-mgmt-fips, cloudbeat-fips, packer-fips, envoy-gateway-fips,...

GHSA-HR2V-4R36-88HR vulnerabilities

Vulnerabilities for packages: flux, helm-push, helm-operator, istio, kots, rancher-fleet, eksctl, envoy-gateway, headlamp, cluster-api-helm-controller, kubescape, harbor, helm-mapkubeapis, cilium-cli, helm-set-status, consul-k8s, nova, kube-arangodb, flux-source-controller, linkerd2, teleport,...

CVE-2026-35206 vulnerabilities

Vulnerabilities for packages: flux, helm-push, helm-operator, istio, kots, rancher-fleet, eksctl, envoy-gateway, headlamp, cluster-api-helm-controller, kubescape, harbor, helm-mapkubeapis, cilium-cli, helm-set-status, consul-k8s, nova, kube-arangodb, flux-source-controller, linkerd2, teleport,...

GHSA-FV83-X2XW-2J55 vulnerabilities

Vulnerabilities for packages: flux, goreleaser, temporal, aws-network-policy-agent, aws-load-balancer-controller, dgraph, karpenter, oras, mariadb-operator, secrets-store-csi-driver-provider-aws, dkron, rabbitmq-messaging-topology-operator, clickhouse-operator, supercronic, nodetaint,...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: docker-cli-buildx, nfpm, crossplane-provider-azure-managedidentity, argo-cd, kubescape, flux-notification-controller, aactl, crossplane, src-fingerprint, wolfictl, opentofu, ratify, osv-scanner, datadog-agent, flux-source-controller, crossplane-provider-aws-eks,...

GHSA-Q9HV-HPM4-HJ6X vulnerabilities

Vulnerabilities for packages: docker-cli-buildx, nfpm, crossplane-provider-azure-managedidentity, argo-cd, kubescape, flux-notification-controller, aactl, crossplane, src-fingerprint, wolfictl, opentofu, ratify, osv-scanner, datadog-agent, flux-source-controller, crossplane-provider-aws-eks,...

GHSA-8JVR-VH7G-F8GX vulnerabilities

Vulnerabilities for packages: nats-server, apache-beam-java-sdk, tetragon, gitlab-kas-fips, kubernetes-csi-external-resizer, jaeger-operator, pgwatch, amazon-ecs-agent, grype-fips, stakater-reloader, nsc-fips, vitess, azcopy-fips, kubernetes-ingress-defaultbackend-fips, cert-manager-cmctl,...

BIT-FLUX-2022-36049 Flux2 Helm Controller denial of service

Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...

BIT-FLUX-2022-24817 Improper kubeconfig validation allows arbitrary code execution

Flux2 is an open and extensible continuous delivery solution for Kubernetes. Flux2 versions between 0.1.0 and 0.29.0, helm-controller 0.1.0 to v0.19.0, and kustomize-controller 0.1.0 to v0.23.0 are vulnerable to Code Injection via malicious Kubeconfig. In multi-tenancy deployments this can also...

EUVD-2022-6887

Malicious code in bioql PyPI...

GHSA-8PJC-487G-W6P2 vulnerabilities

Vulnerabilities for packages: harbor-registry, step-kms-plugin, gendesk, k3d, trivy, cluster-api-helm-controller, knative-serving, emissary, mattermost, opentofu, yunikorn-k8shim, nri-apache, opa, thanos-operator, nats-server-config-reloader, kubecolor, vitess, dgraph,...

CVE-2025-55199 vulnerabilities

Vulnerabilities for packages: flux, helm-push, helm-operator, istio, kots, rancher-fleet, eksctl, envoy-gateway, headlamp, cluster-api-helm-controller, kubescape, harbor, kargo, helm-mapkubeapis, cilium-cli, helm-set-status, consul-k8s, nova, kube-arangodb, flux-source-controller, linkerd2,...

CVE-2025-55198 vulnerabilities

Vulnerabilities for packages: flux, helm-push, helm-operator, istio, kots, rancher-fleet, eksctl, envoy-gateway, headlamp, cluster-api-helm-controller, kubescape, harbor, kargo, helm-mapkubeapis, cilium-cli, helm-set-status, consul-k8s, nova, kube-arangodb, flux-source-controller, linkerd2,...

GHSA-F9F8-9PMF-XV68 vulnerabilities

Vulnerabilities for packages: flux, helm-push, helm-operator, istio, kots, rancher-fleet, eksctl, envoy-gateway, headlamp, cluster-api-helm-controller, kubescape, harbor, kargo, helm-mapkubeapis, cilium-cli, helm-set-status, consul-k8s, nova, kube-arangodb, flux-source-controller, linkerd2,...

GHSA-9H84-QMV7-982P vulnerabilities

Vulnerabilities for packages: flux, helm-push, helm-operator, istio, kots, rancher-fleet, eksctl, envoy-gateway, headlamp, cluster-api-helm-controller, kubescape, harbor, kargo, helm-mapkubeapis, cilium-cli, helm-set-status, consul-k8s, nova, kube-arangodb, flux-source-controller, linkerd2,...

CVE-2025-32387 vulnerabilities

Vulnerabilities for packages: flux-helm-controller-fips, rancher-helm, trivy, kubescape, cluster-api-helm-controller, flux-helm-controller, helm-operator-fips, eksctl, cert-manager-cmctl, teleport, chart-testing, trivy-fips, chartmuseum, tw, consul-k8s-fips, harbor-fips, flux-fips,...

CVE-2025-32386 vulnerabilities

Vulnerabilities for packages: flux-helm-controller-fips, rancher-helm, trivy, kubescape, cluster-api-helm-controller, flux-helm-controller, helm-operator-fips, eksctl, cert-manager-cmctl, teleport, chart-testing, trivy-fips, chartmuseum, tw, consul-k8s-fips, harbor-fips, flux-fips,...

GHSA-265R-HFXG-FHMG vulnerabilities

Vulnerabilities for packages: helm-push, helm-operator, docker-cli-buildx, kots, skaffold, eksctl, spegel, dagger, opa-envoy, envoy-gateway, newrelic-infrastructure-agent, cluster-api-helm-controller, nerdctl, kubescape, k8sgpt, grype, kargo, syft, opa, cilium-cli, k3s, wolfictl, kaniko,...