146 matches found
GHSA-MQR9-HJR8-2M9W vulnerabilities
Vulnerabilities for packages: k3s...
CVE-2023-26248 vulnerabilities
Vulnerabilities for packages: k3s...
GHSA-MQR9-HJR8-2M9W vulnerabilities
Vulnerabilities for packages: k3s, rke2-runtime, rke2-runtime-fips...
CVE-2023-26248 vulnerabilities
Vulnerabilities for packages: k3s, rke2-runtime, rke2-runtime-fips...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: argo-cd-fips, prometheus-elasticsearch-exporter, trivy-operator, cloud-provider-aws, helm, mattermost, k9s, commercial-grafana, flux, gitlab-workhorse-ce-fips, zot, osv-scanner, seaweedfs-rocksdb-fips, tigera-operator, external-dns, istio, coder, upwind-agent,...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: istio, trivy-operator, rancher, telegraf, cert-manager, cilium-cli, k3s, fscrypt, kyverno, flux, spire-server, knative-serving, osv-scanner, containerd, external-dns, kubernetes, mattermost, argo-cd, minio, opentelemetry-collector, nerdctl, gitlab-kas, chisel,...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: step, crossplane-provider-azure-managedidentity, kargo, tekton-chains, age, pulumi-language-dotnet, steampipe, kubernetes, opentelemetry-collector, rootlesskit, gitlab-kas, nuclei, buildkitd, mods, guac, cosign, kaf, step-issuer, flux-image-automation-controller,...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: istio, trivy-operator, rancher, telegraf, cert-manager, cilium-cli, k3s, fscrypt, kyverno, flux, spire-server, knative-serving, osv-scanner, containerd, external-dns, kubernetes, mattermost, argo-cd, minio, opentelemetry-collector, nerdctl, gitlab-kas, chisel,...
GHSA-78MQ-XCR3-XM33 vulnerabilities
Vulnerabilities for packages: pulumi-language-yaml, istio, trivy-operator, melange, telegraf, cert-manager, wolfictl, cilium-cli, k3s, fscrypt, kyverno, flux, spire-server, knative-serving, osv-scanner, containerd, gptscript, pulumi-language-dotnet, pulumi-language-java, teleport, external-dns,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: istio, rancher, telegraf, cert-manager, buildah, cilium-cli, fscrypt, k3s, flux, kyverno, spire-server, knative-serving, containerd, teleport, external-dns, kubernetes, mattermost, argo-cd, minio, opentelemetry-collector, nerdctl, gitlab-kas, prometheus-operator,...
CVE-2026-54250
K3s is a fully conformant production-ready Kubernetes distribution. Prior to 1.35.3+k3s1, 1.34.6+k3s1, v1.33.10+k3s1, a path traversal vulnerability exists in K3s's etcd snapshot decompression functionality. Zip files containing archive members with maliciously crafted names can be written to...
CVE-2026-54250
K3s is a fully conformant production-ready Kubernetes distribution. Prior to 1.35.3+k3s1, 1.34.6+k3s1, v1.33.10+k3s1, a path traversal vulnerability exists in K3s's etcd snapshot decompression functionality. Zip files containing archive members with maliciously crafted names can be written to...
CVE-2026-40898 vulnerabilities
Vulnerabilities for packages: frp, kubo, opentelemetry-operator, jitsucom-bulker, k8sgateway, k3s, prometheus-blackbox-exporter, kargo, teleport, kyverno-policy-reporter-ui, q, dkron, traefik, kube-metrics-adapter, coredns, kyverno-policy-reporter, kubernetes-dns-node-cache, ipfs-cluster, spegel...
CVE-2026-42508 vulnerabilities
Vulnerabilities for packages: istio, vitess, containerd, gitsign, guac, prometheus, telegraf, argocd-image-updater, mattermost, argo-cd, k3s, terragrunt, argo-events...
CVE-2026-42508 vulnerabilities
Vulnerabilities for packages: argo-cd-fips, argo-events, nemo, gitsign, omnictl-multiarch-fips, mattermost, argo-workflows, knative-kafka-broker-fips, commercial-grafana, loki, prometheus, traefik, argo-cd, flux, commercial-expanso-edge, telegraf, istio, upwind-agent, gitlab-rails-ce-fips,...
CVE-2026-39825 vulnerabilities
Vulnerabilities for packages: istio, kubo, rancher, juicefs, karma, knative-eventing, kubevela, telegraf, cert-manager, cilium-cli, go, k3s, kyverno, flux, karpenter, knative-serving, aws-flb-firehose, containerd, dask-gateway, hubble, external-dns, aws-flb-cloudwatch, kubernetes, argo-cd,...
CVE-2026-39825 vulnerabilities
Vulnerabilities for packages: argo-cd-fips, prometheus-elasticsearch-exporter, knative-operator-fips, logstash, ld-relay, helm, kube-rbac-proxy-fips, mattermost, commercial-chainloop-cli, longhorn-backing-image-manager, nvidia-nsight-compute-13.1, terragrunt-fips, commercial-grafana,...
CVE-2026-42499 vulnerabilities
Vulnerabilities for packages: argo-cd-fips, crossplane-provider-aws-osis-fips, crossplane-provider-aws-ram, cloud-provider-gcp-cloud-controller-manager-fips, helm, kube-rbac-proxy-fips, mattermost, commercial-chainloop-cli, crossplane-provider-aws-bedrockagent-fips, docker-cli-buildx-fips,...
CVE-2026-39820 vulnerabilities
Vulnerabilities for packages: argo-cd-fips, crossplane-provider-aws-osis-fips, crossplane-provider-aws-ram, cloud-provider-gcp-cloud-controller-manager-fips, helm, kube-rbac-proxy-fips, mattermost, commercial-chainloop-cli, crossplane-provider-aws-bedrockagent-fips, docker-cli-buildx-fips,...
GHSA-P9H5-JM8X-MJM5 vulnerabilities
Vulnerabilities for packages: argo-cd-fips, crossplane-provider-aws-osis-fips, crossplane-provider-aws-ram, cloud-provider-gcp-cloud-controller-manager-fips, helm, kube-rbac-proxy-fips, mattermost, commercial-chainloop-cli, crossplane-provider-aws-bedrockagent-fips, docker-cli-buildx-fips,...