Lucene search
+L

96 matches found

Patchstack
Patchstack
added 2026/03/20 5:59 p.m.7 views

WordPress Kargo Takip plugin < 0.2.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Kargo Takip versions 0.2.4...

6.5CVSS5.8AI score0.00315EPSS
Exploits0Affected Software1
CVE
CVE
added 2026/03/20 12:39 a.m.15 views

CVE-2026-32828

CVE-2026-32828 affects Kargo promotions: versions 1.4.0–1.6.3, 1.7.0-rc.1–1.7.8, 1.8.0-rc.1–1.8.11, and 1.9.0-rc.1–1.9.4 have HTTP/http-download promotion steps that allow SSRF against link-local addresses, notably 169.254.169.254, enabling exfiltration of sensitive data (e.g., IAM credentials) w...

5.1CVSS5.8AI score0.00328EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/20 12:39 a.m.3 views

CVE-2026-32828 Kargo: SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration

Kargo manages and automates the promotion of software artifacts. In versions 1.4.0 through 1.6.3, 1.7.0-rc.1 through 1.7.8, 1.8.0-rc.1 through 1.8.11, and 1.9.0-rc.1 through 1.9.4, the http and http-download promotion steps allow Server-Side Request Forgery SSRF against link-local addresses, most...

5.1CVSS5.8AI score0.00328EPSS
Exploits0References2
OSV
OSV
added 2026/03/20 12:39 a.m.5 views

CVE-2026-32828 Kargo: SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration

Kargo manages and automates the promotion of software artifacts. In versions 1.4.0 through 1.6.3, 1.7.0-rc.1 through 1.7.8, 1.8.0-rc.1 through 1.8.11, and 1.9.0-rc.1 through 1.9.4, the http and http-download promotion steps allow Server-Side Request Forgery SSRF against link-local addresses, most...

5.1CVSS6.3AI score0.00328EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.7 views

kargo 代码问题漏洞

Kargo is an open-source continuous delivery tool developed by Akuity. Versions of Kargo prior to 1.6.3, 1.7.8 and earlier, 1.8.11 and earlier, as well as 1.9.4 and earlier, have code vulnerabilities. These vulnerabilities stem from server-side request forgery during the HTTP and http-download...

5.1CVSS6.5AI score0.00328EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/16 8:47 p.m.2 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via httprequester.go and httpdownloader.go‎. An attacker can access internal network resources and exfiltrate sensitive data by crafting malicious promotion templates or Promotion resources that trigger...

5.1CVSS5.8AI score0.00328EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/03/16 8:47 p.m.9 views

Kargo Vulnerable to SSRF in Promotion http/http-download Steps Enables Internal Network Access and Data Exfiltration

Summary Kargo's built-in http and http-download promotion steps execute outbound HTTP requests from the Kargo controller. By design, these steps do not restrict destination addresses, as there are legitimate use cases for requests to internal and private endpoints. However, this also permits...

5.1CVSS6AI score0.00328EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2026/02/24 12:24 a.m.5 views

SUSE CVE-2026-27112

Kargo manages and automates the promotion of software artifacts. From 1.7.0 to before v1.7.8, v1.8.11, and v1.9.3, the batch resource creation endpoints of both Kargo's legacy gRPC API and newer REST API accept multi-document YAML payloads. Specially crafted payloads can manifest a bug present in...

9.9CVSS6.5AI score0.00423EPSS
Exploits0References4
OSV
OSV
added 2026/02/23 6:23 p.m.6 views

GO-2026-4515 Kargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API Endpoints in github.com/akuity/kargo

Kargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API Endpoints in github.com/akuity/kargo...

5.3CVSS5.3AI score0.00175EPSS
Exploits0References2
OSV
OSV
added 2026/02/23 6:23 p.m.7 views

GO-2026-4516 Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo

Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints in github.com/akuity/kargo...

9.9CVSS5.4AI score0.00423EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/22 1:28 a.m.6 views

CVE-2026-27112

Kargo manages and automates the promotion of software artifacts. From 1.7.0 to before v1.7.8, v1.8.11, and v1.9.3, the batch resource creation endpoints of both Kargo's legacy gRPC API and newer REST API accept multi-document YAML payloads. Specially crafted payloads can manifest a bug present in...

9.9CVSS6.7AI score0.00423EPSS
Exploits0References1
NVD
NVD
added 2026/02/20 10:16 p.m.14 views

CVE-2026-27112

Kargo manages and automates the promotion of software artifacts. From 1.7.0 to before v1.7.8, v1.8.11, and v1.9.3, the batch resource creation endpoints of both Kargo's legacy gRPC API and newer REST API accept multi-document YAML payloads. Specially crafted payloads can manifest a bug present in...

9.9CVSS0.00423EPSS
Exploits0References2
CVE
CVE
added 2026/02/20 9:22 p.m.33 views

CVE-2026-27112

CVE-2026-27112 affects Kargo’s batch resource creation endpoints (legacy gRPC and newer REST API). In versions 1.7.0–before 1.7.8, 1.8.11, and 1.9.3, the endpoints accept multi-document YAML payloads and contain a logic bug that can inject arbitrary resources into the underlying Kubernetes namesp...

9.9CVSS6.7AI score0.00423EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/02/20 9:22 p.m.28 views

CVE-2026-27112 Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints

Kargo manages and automates the promotion of software artifacts. From 1.7.0 to before v1.7.8, v1.8.11, and v1.9.3, the batch resource creation endpoints of both Kargo's legacy gRPC API and newer REST API accept multi-document YAML payloads. Specially crafted payloads can manifest a bug present in...

9.4CVSS0.00423EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/20 9:17 p.m.32 views

CVE-2026-27111 Kargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API Endpoints

Kargo manages and automates the promotion of software artifacts. From v1.9.0 to v1.9.2, Kargo's authorization model includes a promote verb -- a non-standard Kubernetes "dolphin verb" -- that gates the ability to advance Freight through a promotion pipeline. This verb exists to separate the abili...

5.3CVSS0.00175EPSS
Exploits0References2
CVE
CVE
added 2026/02/20 9:17 p.m.19 views

CVE-2026-27111

The CVE-2026-27111 issue affects Kargo v1.9.0–v1.9.2, where the REST API endpoints (/v1beta1/projects/{project}/freight/{freight}/approve, /v1beta1/projects/{project}/stages/{stage}/promotions, and /v1beta1/projects/{project}/stages/{stage}/promotions/downstream) fail to enforce the non-standard ...

5.3CVSS5.6AI score0.00175EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/02/20 9:17 p.m.6 views

CVE-2026-27111 Kargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API Endpoints

Kargo manages and automates the promotion of software artifacts. From v1.9.0 to v1.9.2, Kargo's authorization model includes a promote verb -- a non-standard Kubernetes "dolphin verb" -- that gates the ability to advance Freight through a promotion pipeline. This verb exists to separate the abili...

5.3CVSS5.6AI score0.00175EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.11 views

kargo 安全漏洞

Kargo is an open-source continuous delivery tool developed by Akuity. Versions of Kargo from 1.7.0 to 1.7.8, as well as versions before 1.8.11 and 1.9.3, contain security vulnerabilities. These vulnerabilities stem from the batch resource creation endpoints accepting specially crafted YAML...

9.9CVSS6.1AI score0.00423EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.14 views

kargo 安全漏洞

Kargo is a continuous delivery tool developed by Akuity. Versions 1.9.0 to 1.9.2 of Kargo contain security vulnerabilities. These vulnerabilities stem from the lack of authorization checks for three endpoints in the REST API, which may lead to bypassing the intended authorization boundaries...

5.3CVSS5.8AI score0.00175EPSS
Exploits0References2
OSV
OSV
added 2026/02/19 3:16 p.m.7 views

GHSA-7G9X-CP9G-92MR Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints

Summary The batch resource creation endpoints of both Kargo's legacy gRPC API and newer REST API accept multi-document YAML payloads. When either endpoint creates a Project resource, creation of subsequent resources from that same payload belonging in that Project's underlying Kubernetes namespac...

9.4CVSS6.5AI score0.00423EPSS
Exploits0References4
Rows per page
Query Builder