146 matches found
GHSA-MQR9-HJR8-2M9W vulnerabilities
Vulnerabilities for packages: k3s...
CVE-2023-26248 vulnerabilities
Vulnerabilities for packages: k3s...
GHSA-MQR9-HJR8-2M9W vulnerabilities
Vulnerabilities for packages: k3s, rke2-runtime, rke2-runtime-fips...
CVE-2023-26248 vulnerabilities
Vulnerabilities for packages: k3s, rke2-runtime, rke2-runtime-fips...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: knative-serving, k9s-fips, argo-workflows, external-secrets-operator-fips, kubevela-fips, flux-source-controller, frankenphp-8.3, trivy-operator-fips, elastic-agent-fips, kuma, skaffold-fips, prometheus-mongodb-exporter, cert-manager, rancher-agent, drone, cloudbeat,...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: containerd, nfpm, kaf, pulumi-language-yaml, dagger, skaffold, flux-image-automation-controller, glab, witness, docker, gatus, external-dns, argo-events, openbao, falcoctl, act, slsa-verifier, crossplane-provider-azure-storage, neuvector-sigstore-interface, tkn,...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: telegraf, kots, fscrypt, nerdctl, kubernetes-dashboard, containerd, kyverno, spire-server, argocd-image-updater, kaf, knative-serving, helm, mattermost, flux-image-automation-controller, skaffold, kubernetes, opentelemetry-collector, aactl, trivy, cilium, cert-manage...
GHSA-78MQ-XCR3-XM33 vulnerabilities
Vulnerabilities for packages: telegraf, kots, fscrypt, apko, nerdctl, kubernetes-dashboard, containerd, nfpm, kyverno, spire-server, nuclei, argocd-image-updater, kaf, knative-serving, helm, pulumi-language-yaml, dagger, terragrunt, mattermost, flux-image-automation-controller, melange,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: telegraf, kots, fscrypt, nerdctl, kubernetes-dashboard, containerd, kyverno, spire-server, kaf, knative-serving, helm, mattermost, podman, kubernetes, opentelemetry-collector, aactl, cilium, cert-manager, external-dns, minio, vitess, loki, buildah, prometheus,...
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: telegraf, kots, fscrypt, nerdctl, kubernetes-dashboard, containerd, docker-machine-driver-harvester, kyverno, spire-server, argocd-image-updater, kaf, knative-serving, helm, mattermost, flux-image-automation-controller, skaffold, kubernetes, opentelemetry-collector,...
CVE-2026-54250
K3s is a fully conformant production-ready Kubernetes distribution. Prior to 1.35.3+k3s1, 1.34.6+k3s1, v1.33.10+k3s1, a path traversal vulnerability exists in K3s's etcd snapshot decompression functionality. Zip files containing archive members with maliciously crafted names can be written to...
CVE-2026-54250
K3s is a fully conformant production-ready Kubernetes distribution. Prior to 1.35.3+k3s1, 1.34.6+k3s1, v1.33.10+k3s1, a path traversal vulnerability exists in K3s's etcd snapshot decompression functionality. Zip files containing archive members with maliciously crafted names can be written to...
CVE-2026-40898 vulnerabilities
Vulnerabilities for packages: jitsucom-bulker, kyverno-policy-reporter-ui, traefik, kyverno-policy-reporter, ipfs-cluster, prometheus-blackbox-exporter, q, kubo, dkron, kube-metrics-adapter, opentelemetry-operator, spegel, coredns, teleport, frp, k8sgateway, kubernetes-dns-node-cache, kargo, k3s...
CVE-2026-42508 vulnerabilities
Vulnerabilities for packages: prometheus, mattermost, telegraf, argo-cd, containerd, argo-events, argocd-image-updater, k3s, terragrunt, vitess, guac, istio, gitsign...
CVE-2026-42508 vulnerabilities
Vulnerabilities for packages: mattermost, k3s, apply-cve-bump, argo-workflows, kyverno-fips, guac, mattermost-fips, prometheus-mongodb-exporter, harbor-fips, harbor, telegraf, argo-cd, loki, traefik-fips, argo-events, commercial-grafana, knative-kafka-broker, backup-restore-operator,...
CVE-2026-39825 vulnerabilities
Vulnerabilities for packages: telegraf, kots, aws-flb-cloudwatch, trino, nerdctl, aws-flb-kinesis, containerd, kubernetes-dashboard, kyverno, keda, kube-fluentd-operator, kaf, knative-serving, falco-no-driver, helm, go, mattermost, external-secrets-operator, kubernetes, aactl, aws-flb-firehose,...
CVE-2026-39825 vulnerabilities
Vulnerabilities for packages: knative-serving, knative-eventing, logstash, cilium-fips, go-slim, keda, kubedock, argo-workflows, external-secrets-operator-fips, kubevela-fips, kyverno-policy-reporter-ui-fips, elastic-agent-fips, virt-operator-fips, kuma, prometheus-mongodb-exporter, cert-manager,...
GHSA-P9H5-JM8X-MJM5 vulnerabilities
Vulnerabilities for packages: k9s-fips, crossplane-provider-aws-scheduler-fips, kyverno-policy-reporter-fips, omni-fips, pgtimetable, prometheus-podman-exporter-fips, jobset-fips, crossplane-provider-aws-ecr-fips, kubevela-fips, trivy-operator-fips, google-cloud-otel-ops-collector, bento-fips,...
GHSA-XQ5J-9R39-C3VF vulnerabilities
Vulnerabilities for packages: k9s-fips, crossplane-provider-aws-scheduler-fips, kyverno-policy-reporter-fips, omni-fips, pgtimetable, prometheus-podman-exporter-fips, jobset-fips, crossplane-provider-aws-ecr-fips, kubevela-fips, trivy-operator-fips, google-cloud-otel-ops-collector, bento-fips,...
CVE-2026-39820 vulnerabilities
Vulnerabilities for packages: k9s-fips, crossplane-provider-aws-scheduler-fips, kyverno-policy-reporter-fips, omni-fips, pgtimetable, prometheus-podman-exporter-fips, jobset-fips, crossplane-provider-aws-ecr-fips, kubevela-fips, trivy-operator-fips, google-cloud-otel-ops-collector, bento-fips,...