5 matches found
CVE-2025-30204 vulnerabilities
Vulnerabilities for packages: crossplane-provider-azure-sql, grafana-agent-operator, octo-sts, bank-vaults, sftpgo-plugin-pubsub, tempo, fluent-bit-plugin-loki, gomplate, cosign, rancher, dgraph, nuclei, zot, flyte, kube-metrics-adapter, crossplane-provider-azure, flux-image-reflector-controller,...
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: docker-credential-acr-env, metallb, kube-bench, kubernetes-dashboard, golangci-lint, kaf, cfssl, nri-discovery-kubernetes, render-template, gomplate, grpcurl, protoc-gen-go-grpc, slsa-verifier, supercronic, dgraph, nuclei, nri-couchbase, hey, shfmt,...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: docker-credential-acr-env, metallb, kube-bench, kubernetes-dashboard, golangci-lint, kaf, cfssl, nri-discovery-kubernetes, render-template, gomplate, grpcurl, protoc-gen-go-grpc, slsa-verifier, supercronic, dgraph, nuclei, nri-couchbase, hey, shfmt,...
Improper Certificate Validation
Overview Affected versions of this package are vulnerable to Improper Certificate Validation due to improper certificate validation. An attacker can intercept secure communications by presenting a forged certificate. Remediation Upgrade github.com/mongodb/mongo-tools/common/db to version 3.6.21,...
Security Bulletin: Multiple vulnerabilities in the mongo-tools utility affect IBM WebSphere Automation
Summary There are multiple vulnerabilities in the mongo-tools utility used in IBM WebSphere Automation. These have been addressed in the remediation section. Vulnerability Details CVEID:CVE-2022-41715 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by the compilation of regula...