3 matches found
CLEANSTART-2026-UL17352 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate
Multiple security vulnerabilities affect the metrics-server-fips package. An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. See references for individual vulnerability details...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: conftest-fips, prometheus-adapter-fips, cluster-autoscaler-fips, up, prometheus-stackdriver-exporter, kiam, timestamp-authority-fips, aws-efs-csi-driver-fips, src, aactl, slsa-verifier, smarter-device-manager-fips, bank-vaults-fips, terraform-provider-sendgrid,...
CVE-2023-45142 vulnerabilities
Vulnerabilities for packages: caddy, kube-oidc-proxy, buildkitd, kubernetes-fips, up, prometheus-adapter, metrics-server-fips, kubevela, kubernetes, rancher-webhook, rancher-webhook-fips, k3s, cert-manager...