Lucene search
K

4 matches found

Snyk
Snyk
added 2026/03/16 8:47 p.m.2 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via httprequester.go and httpdownloader.go‎. An attacker can access internal network resources and exfiltrate sensitive data by crafting malicious promotion templates or Promotion resources that trigger...

5.1CVSS5.8AI score0.00328EPSS
Exploits0References2
Wolfi
Wolfi
added 2025/12/17 1:48 p.m.4 views

CVE-2025-68156 vulnerabilities

Vulnerabilities for packages: kserve, k8sgateway, grafana-alloy, opentelemetry-collector-contrib, kine, keda, vale, tempo, argo-rollouts, argo-cd, datadog-agent, k8sgpt, k3s, jaeger, splunk-otel-collector, kubeflow-pipelines, kargo, argo-workflows, coredns, nats, verticadb-operator,...

7.5CVSS7.1AI score0.00377EPSS
Exploits0
Wolfi
Wolfi
added 2025/12/17 1:48 p.m.5 views

GHSA-CFPF-HRX2-8RV6 vulnerabilities

Vulnerabilities for packages: kserve, k8sgateway, grafana-alloy, opentelemetry-collector-contrib, kine, keda, vale, tempo, argo-rollouts, argo-cd, datadog-agent, k8sgpt, k3s, jaeger, splunk-otel-collector, kubeflow-pipelines, kargo, argo-workflows, coredns, nats, verticadb-operator,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2025/12/17 1:23 p.m.3 views

GHSA-CFPF-HRX2-8RV6 vulnerabilities

Vulnerabilities for packages: nrdot-collector-k8s, kubeflow-pipelines, kserve, argo-workflows-fips, jaeger, amazon-cloudwatch-agent, eks-distro, argo-rollouts, grafana-alloy-fips, opentelemetry-collector, keda-fips, opentelemetry-collector-contrib-fips, k3s, k8sgpt, opentelemetry-collector-contri...

5.9AI score
Exploits0
Rows per page
Query Builder