GHSA-W2Q5-6Q6X-X959 vulnerabilities

Vulnerabilities for packages: cosign-fips, kubernetes-csi-external-snapshotter-fips, grype-db, victoriametrics-operator-fips, terraform-provider-azapi, cloudbeat, blobfuse2-fips, policy-controller, helm-fips, opentofu-fips, kyverno-policy-reporter-plugins-trivy-fips, metallb,...

GHSA-7MR4-XJXG-34G6 vulnerabilities

Vulnerabilities for packages: db-operator, boring-registry, kpt, falcoctl, redpanda, cluster-api-provider-vsphere, cloud-provider-azure, buildah, litestream, terraform-provider-kubernetes, neuvector-scanner, docker-cli, k8s-device-plugin, smarter-device-manager, cosign, flux-source-controller,...

CVE-2026-32289 vulnerabilities

Vulnerabilities for packages: db-operator, boring-registry, kpt, falcoctl, redpanda, cluster-api-provider-vsphere, cloud-provider-azure, buildah, litestream, terraform-provider-kubernetes, neuvector-scanner, docker-cli, k8s-device-plugin, smarter-device-manager, cosign, flux-source-controller,...

CVE-2025-61728 vulnerabilities

Vulnerabilities for packages: headlamp, calico, cilium-envoy-fips, aactl, cloudbeat, scorecard, kubevela-fips, croc, flux-kustomize-controller, spicedb-operator-fips, listmonk, vendir-fips, fuse-overlayfs-snapshotter, kubernetes-dashboard-api, opentofu-fips, loki, headlamp-fips, gitlab-rails-ce,...

GHSA-QXP5-GWG8-XV66 vulnerabilities

Vulnerabilities for packages: opensearch-k8s-operator, kpt, metacontroller, grafana-alloy, cri-tools, knative-serving, kubeflow-katib, prometheus, crossplane-provider-aws-sns, pulumi-language-yaml, azcopy, ip-masq-agent, oauth2-proxy, hugo-extended, spark-operator, actions-runner-controller,...

CVE-2024-45336 vulnerabilities

Vulnerabilities for packages: cosign-fips, promxy, victoriametrics-operator-fips, opa-fips-envoy, docker-compose, scorecard, mockery, kind, prometheus-pushgateway-fips, policy-controller, helm-fips, src-fingerprint, vendir-fips, opentofu-fips, kubernetes-dashboard-api, kubernetes-release, fq,...