232 matches found
CVE-2025-8077 vulnerabilities
Vulnerabilities for packages: neuvector-scanner, neuvector-scanner-fips...
CVE-2025-8077 vulnerabilities
Vulnerabilities for packages: neuvector-scanner...
GHSA-8PXW-9C75-6W56 vulnerabilities
Vulnerabilities for packages: neuvector-scanner...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: terraform-provider-pagerduty, helm, nginx-prometheus-exporter, azure-service-operator, cert-manager-csi-driver, gatekeeper, certificate-transparency, cerbos, kpt, temporal-ui-server, crossplane-provider-azure-managedidentity, bom, helm-mapkubeapis,...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: azure-service-operator, cert-manager-csi-driver, gatekeeper, certificate-transparency, aws-signer-notation-plugin, cerbos, mesosphere-vsphere-csi, sonobuoy, cluster-autoscaler, k3s, task, cue, external-secrets-operator, argo-cd, grpc-health-probe,...
GHSA-5W89-2C2X-6X66 vulnerabilities
Vulnerabilities for packages: secrets-store-csi-driver-fips, aws-ebs-csi-driver-fips, splunk-otel-collector, prometheus-mysqld-exporter, howdy-yall, gcp-compute-persistent-disk-csi-driver-fips, cert-manager-fips, harbor-scanner-trivy-fips, tailscale, node-problem-detector-fips,...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: secrets-store-csi-driver-fips, zitadel, aws-ebs-csi-driver-fips, seaweedfs-operator, terraform-provider-aws-fips, rke2-cloud-provider-fips, splunk-otel-collector, swagger, docker-cli-fips, minio-object-browser-fips, prometheus-mysqld-exporter, virt-api-fips,...
CLEANSTART-2026-KJ56465 Security fixes for CVE-2026-25679, CVE-2026-27139, CVE-2026-27142 applied in versions: 5.4.8-r0
Multiple security vulnerabilities affect the neuvector-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-33487 vulnerabilities
Vulnerabilities for packages: dex, mattermost-fips, commercial-grafana, rancher, zitadel, mattermost, omni-fips, teleport-operator-fips, rancher-agent, neuvector, dex-fips, gotrue, teleport, gotrue-fips, neuvector-fips, omni...
CVE-2025-67860
A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users...
CVE-2025-67860
A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users...
CVE-2025-67860
A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users...
CVE-2025-67860 NeuVector scanner insecurely handles passwords as command arguments
A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users...
CVE-2025-67860 NeuVector scanner insecurely handles passwords as command arguments
A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users...
CVE-2025-67860
A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users...
CVE-2025-67860
NeuVector scanner (CVE-2025-67860) is affected: the scanner process accepts registry and controller credentials via command-line arguments, potentially exposing sensitive credentials to local users. Root cause: credentials handled in command-line context. Impact: limited confidentiality risk (Low...
SUSE CVE-2025-67860
A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users...
Insufficiently Protected Credentials
Overview Affected versions of this package are vulnerable to Insufficiently Protected Credentials via handling passwords as command arguments. An attacker can obtain sensitive information by accessing process arguments through system interfaces. Remediation Upgrade github.com/neuvector/scanner to...
GO-2026-4490 NeuVector scanner insecurely handles passwords as command arguments in github.com/neuvector/scanner
NeuVector scanner insecurely handles passwords as command arguments in github.com/neuvector/scanner. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...
GHSA-3C9M-GQ32-G4JX NeuVector scanner insecurely handles passwords as command arguments
Impact A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users. This may allow unauthorized access to registries or the NeuVector...