CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/02/25 12:50 a.m.•2 views

CLEANSTART-2026-VZ85637 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

Multiple security vulnerabilities affect the helm-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...

OSV•added 2026/02/25 12:49 a.m.•1 views

CLEANSTART-2026-IG94553 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

OSV•added 2026/01/30 3:30 p.m.•4 views

CLEANSTART-2026-UR80185 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

9.8CVSS5.6AI score0.00586EPSS

OSV•added 2026/01/30 3:24 p.m.•1 views

CLEANSTART-2026-FS64938 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

9.8CVSS5.6AI score0.00586EPSS

OSV•added 2026/01/30 3:24 p.m.•4 views

CLEANSTART-2026-HX78047 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

9.8CVSS5.6AI score0.00586EPSS

OSV•added 2026/01/30 3:23 p.m.•8 views

CLEANSTART-2026-TL71584 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

9.8CVSS5.6AI score0.00451EPSS

Exploits2References9

OSV•added 2026/01/30 3:23 p.m.•0 views

CLEANSTART-2026-JR37040 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

OSV•added 2026/01/30 3:23 p.m.•0 views

CLEANSTART-2026-EL98016 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

OSV•added 2026/01/30 3:22 p.m.•2 views

CLEANSTART-2026-GS02052 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

Chainguard•added 2024/12/11 10:3 p.m.•10 views

GHSA-V778-237X-GJRC vulnerabilities

Vulnerabilities for packages: trivy, datadog-agent, restic-fips, caddy, crossplane-provider-azure-managedidentity, fulcio, kube-bench, postgres-operator-fips, rabbitmq-messaging-topology-operator, kube-state-metrics, kapp-controller-fips, rclone-fips, git-lfs, fq, snyk-cli,...

5.8AI score

Chainguard•added 2024/07/02 10:15 p.m.•17 views

CVE-2024-24791 vulnerabilities

Vulnerabilities for packages: datadog-agent, restic-fips, caddy, fulcio, http-echo, kube-bench, opa, rabbitmq-messaging-topology-operator, kube-state-metrics, git-lfs, prometheus-beat-exporter-fips, snyk-cli, metacontroller, velero-plugin-for-aws-fips, gatekeeper-fips, ko-fips, newrelic-nri-stats...

7.5CVSS6.6AI score0.01414EPSS

Chainguard•added 2024/06/05 4:15 p.m.•21 views

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: trivy, datadog-agent, restic-fips, caddy, fulcio, http-echo, kube-bench, opa, postgres-operator-fips, rabbitmq-messaging-topology-operator, kube-state-metrics, git-lfs, fq, prometheus-beat-exporter-fips, snyk-cli, metacontroller, velero-plugin-for-aws-fips, ko-fips,...

5.5CVSS6.6AI score0.00443EPSS

Chainguard•added 2024/02/01 5:15 p.m.•46 views

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: cert-manager, falco, trivy, k3d, dagger, datadog-agent, eksctl, goreleaser, datadog-agent-fips, loki, newrelic-infrastructure-agent, docker-credential-gcr, policy-controller-fips, zot, k3s, scorecard, kubeflow-katib, pulumi, vexctl, cri-tools,...

7.8CVSS6.8AI score0.00258EPSS