61 matches found
CVE-2022-36049
Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...
BIT-HELM-2022-36049 Flux2 Helm Controller denial of service
Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...
GHSA-R53H-JV2G-VPX6 vulnerabilities
Vulnerabilities for packages: cert-manager-fips, up, chartmuseum, k8sgpt, cert-manager, zarf, kubescape, trivy, cilium-cli, kubevela, flux-helm-controller, kots, helm-push, helm-operator, flux-source-controller, zot, k9s, eksctl...
GHSA-V53G-5GJP-272R vulnerabilities
Vulnerabilities for packages: k8sgpt, up, kubevela, helm-push, zarf, flux-source-controller, cilium-cli, k9s, trivy, zot, chartmuseum, kubescape, eksctl, kots, flux-helm-controller, helm-operator...
CVE-2024-25620 vulnerabilities
Vulnerabilities for packages: cert-manager-fips, up, chartmuseum, k8sgpt, cert-manager, zarf, kubescape, trivy, cilium-cli, kubevela, flux-helm-controller, kots, helm-push, helm-operator, flux-source-controller, zot, k9s, eksctl...
GHSA-XW73-RW38-6VJC vulnerabilities
Vulnerabilities for packages: cert-manager-fips, flux, kubeflow-katib, helm-operator-fips, cert-manager, argo-workflows-fips, crane, istio-pilot-discovery, kubescape, scorecard, trivy, timoni, argo-workflows, policy-controller, zot, vexctl, helm-operator, falcoctl-fips, bom, pulumi, dagger,...
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: cert-manager-fips, flux, kubeflow-katib, helm-operator-fips, cert-manager, argo-workflows-fips, crane, istio-pilot-discovery, kubescape, scorecard, trivy, timoni, argo-workflows, policy-controller, zot, vexctl, helm-operator, falcoctl-fips, bom, pulumi, dagger,...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: spark-operator, prometheus-blackbox-exporter, cortex, up, kubevela, ipfs, kubeflow, falco, buildkitd, scorecard, src, terraform-provider-sendgrid, slsa-verifier, dgraph, k3d, kubescape, aactl...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: terraform-provider-sendgrid-fips, kubescape, scorecard, ipfs, falcoctl-fips, conftest-fips, smarter-device-manager-fips, kiam, kubevela, vault-csi-provider, falco, slsa-verifier, cortex, kubernetes-csi-livenessprobe, kubeflow-fips, dgraph, aws-efs-csi-driver-fips,...
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: pulumi-language-yaml, git-lfs, coredns, kaf, ip-masq-agent, kubewatch, helm, metacontroller, src, terraform-provider-sendgrid, kpt, metrics-server, mc, cortex, dynamic-localpv-provisioner, flux-kustomize-controller, pulumi-language-dotnet, terraform-provider-aws,...
CVE-2023-2253 vulnerabilities
Vulnerabilities for packages: argocd-image-updater, bom, argocd-image-updater-fips, kpt, kubernetes-dashboard, aactl...
GHSA-HQXW-F8MX-CPMW vulnerabilities
Vulnerabilities for packages: argocd-image-updater, bom, argocd-image-updater-fips, kpt, kubernetes-dashboard, aactl...
CVE-2023-28841 vulnerabilities
Vulnerabilities for packages: bom, ko, helm, up, apko, melange, ctop...
GHSA-232P-VWFF-86MP vulnerabilities
Vulnerabilities for packages: bom, ko, helm, up, apko, melange, ctop...
GHSA-33PG-M6JH-5237 vulnerabilities
Vulnerabilities for packages: bom, ko, helm, up, apko, melange, ctop...
GHSA-6WRF-MXFJ-PF5P vulnerabilities
Vulnerabilities for packages: bom, ko, helm, up, apko, melange, ctop...
CBL Mariner 2.0 Security Update: helm (CVE-2022-36049)
The version of helm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-36049 advisory. - Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-...
CVE-2023-25173 vulnerabilities
Vulnerabilities for packages: ctop...
CVE-2023-25153 vulnerabilities
Vulnerabilities for packages: ctop...
GHSA-PWCW-6F5G-GXF8 vulnerabilities
Vulnerabilities for packages: helm...