63 matches found
GHSA-CM6P-QC7V-M3JW vulnerabilities
Vulnerabilities for packages: fzf, newrelic-fluent-bit-output, ksops, rabbitmq-messaging-topology-operator, mattermost, postgres-operator, src-fingerprint, osv-scanner, falcosidekick, swagger, cluster-api-ipam-provider-in-cluster, percona-server-mongodb-operator, step-kms-plugin, pgtimetable,...
CVE-2025-61730 vulnerabilities
Vulnerabilities for packages: newrelic-fluent-bit-output, node-feature-discovery, rancher-system-agent, influx, custom-pod-autoscaler, ksops, kubeflow, cloud-provider-aws, mattermost, rabbitmq-messaging-topology-operator, rancher-telemetry, docker-credential-gcr, grafana-operator, hydra,...
CVE-2025-61726 vulnerabilities
Vulnerabilities for packages: newrelic-fluent-bit-output, node-feature-discovery, rancher-system-agent, influx, custom-pod-autoscaler, ksops, kubeflow, cloud-provider-aws, mattermost, rabbitmq-messaging-topology-operator, rancher-telemetry, docker-credential-gcr, grafana-operator, hydra,...
GHSA-GR56-3GP6-6GMJ vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, kubeflow-fips, rabbitmq-default-user-credential-updater-fips, fleet-server, hubble-ui, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, aws-privateca-issuer, eksctl, spegel, gitlab-rails-ce-fips,...
CVE-2025-61730 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, kubeflow-fips, rabbitmq-default-user-credential-updater-fips, fleet-server, hubble-ui, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, aws-privateca-issuer, eksctl, spegel, gitlab-rails-ce-fips,...
GHSA-CM6P-QC7V-M3JW vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, kubeflow-fips, rabbitmq-default-user-credential-updater-fips, fleet-server, go-jsonnet, hubble-ui, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, aws-privateca-issuer, eksctl, spegel,...
CVE-2025-68119 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, kubeflow-fips, rabbitmq-default-user-credential-updater-fips, fleet-server, go-jsonnet, hubble-ui, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, aws-privateca-issuer, eksctl, spegel,...
CVE-2025-61731 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, kubeflow-fips, rabbitmq-default-user-credential-updater-fips, fleet-server, go-jsonnet, hubble-ui, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, aws-privateca-issuer, eksctl, spegel,...
GHSA-XVQR-69V8-F3GV vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, kubeflow-fips, rabbitmq-default-user-credential-updater-fips, fleet-server, go-jsonnet, hubble-ui, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, aws-privateca-issuer, eksctl, spegel,...
CVE-2025-61729 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, kubeflow-fips, rabbitmq-default-user-credential-updater-fips, fleet-server, go-jsonnet, hubble-ui, hello-world-golang, splunk-otel-collector, buildkitd, tailscale, aws-privateca-issuer, spegel, nats, temporal-serve...
CVE-2025-61729 vulnerabilities
Vulnerabilities for packages: newrelic-fluent-bit-output, ksops, rabbitmq-messaging-topology-operator, helm, postgres-operator, neuvector-dbgen, src-fingerprint, hello-world-golang, osv-scanner, kafka-proxy, opentelemetry-collector-contrib, terraform-provider-sendgrid, polaris,...
GHSA-GWRF-JF3H-W649 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, cluster-autoscaler-fips, nvidia-nsight-compute-13.1, azuredisk-csi-fips, nemo, nats, shfmt, karma-fips, prometheus-nats-exporter, gcp-compute-persistent-disk-csi-driver-fips, falco, secrets-store-csi-driver-provider-aws, sftpgo-plugin-pubsub,...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, hello-world-golang, caddy-fips, prometheus-elasticsearch-exporter, splunk-otel-collector, gofumpt, buildkitd, configmap-reload, kyverno-policy-reporter, eksctl, spegel, trivy-fips, secrets-store-csi-driver-provider-azure, net-kourier-fips,...
Moderate: Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.2.4
Logging for Red Hat OpenShift - 6.2.4 Red Hat OpenShift Logging 6.2.4 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
PT-2024-27062 · Unknown · Logging-Operator
Name of the Vulnerable Software and Affected Versions: logging-operator version 4.6.0 Description: The issue allows attackers to access sensitive data and escalate privileges by obtaining the service account's token due to insecure permissions. Recommendations: For logging-operator version 4.6.0,...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36541
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...