235 matches found
GHSA-9VCR-P3RJ-Q5Q6 vulnerabilities
Vulnerabilities for packages: tbot, teleport, zarf-fips, tflint, cloudbeat-fips, image-factory, tkn-fips, neuvector-sigstore-interface, tkn, kubescape-server, crossplane-fips, crossplane, trivy-operator-fips, cloudbeat, aactl, kubescape, tekton-chains, falcoctl-fips, kyverno, trivy-operator,...
GHSA-9VCR-P3RJ-Q5Q6 vulnerabilities
Vulnerabilities for packages: kubescape, crossplane, gitsign, falcoctl, policy-controller, teleport, trivy, trivy-operator, zarf, kyverno, tekton-chains, tkn, tflint, neuvector-sigstore-interface, kyverno-notation-aws, aactl...
CVE-2026-49834 vulnerabilities
Vulnerabilities for packages: kubescape, crossplane, gitsign, falcoctl, policy-controller, teleport, trivy, trivy-operator, zarf, kyverno, tekton-chains, tkn, tflint, neuvector-sigstore-interface, kyverno-notation-aws, aactl...
GHSA-4JJ9-CGQC-X9H5 vulnerabilities
Vulnerabilities for packages: neuvector-scanner-fips...
CVE-2025-66001 vulnerabilities
Vulnerabilities for packages: neuvector-scanner-fips...
GHSA-8FF6-PC43-JWV3 vulnerabilities
Vulnerabilities for packages: neuvector-scanner...
CVE-2025-53884 vulnerabilities
Vulnerabilities for packages: neuvector-scanner...
GHSA-8FF6-PC43-JWV3 vulnerabilities
Vulnerabilities for packages: neuvector-scanner-fips, neuvector-scanner...
CVE-2025-53884 vulnerabilities
Vulnerabilities for packages: neuvector-scanner-fips, neuvector-scanner...
Fleet has PSS Bypass through addLabelsFromOptions in Fleet Agent
Impact A vulnerability has been identified in Fleet's agent-side deployer, which did not filter security-sensitive keys from namespaceLabels in fleet.yaml or BundleDeployment.spec.options.namespaceLabels when applying them to the target namespace. An attacker with git push access to a...
GHSA-47Q9-M4WW-924M vulnerabilities
Vulnerabilities for packages: tbot, teleport, zarf-fips, slsa-verifier, tflint, cloudbeat-fips, tkn-fips, ratify, ko-fips, neuvector-sigstore-interface, tkn, kubescape-server, crossplane-fips, crossplane, trivy-operator-fips, cloudbeat, aactl, kubescape, tekton-chains, spire-server, falcoctl-fips...
CVE-2026-48702 vulnerabilities
Vulnerabilities for packages: tbot, teleport, zarf-fips, slsa-verifier, tflint, cloudbeat-fips, tkn-fips, ratify, ko-fips, neuvector-sigstore-interface, tkn, kubescape-server, crossplane-fips, crossplane, trivy-operator-fips, cloudbeat, aactl, kubescape, tekton-chains, spire-server, falcoctl-fips...
CVE-2026-48702 vulnerabilities
Vulnerabilities for packages: ko, teleport, gitsign, falcoctl, spire-server, trivy-operator, kyverno, neuvector-sigstore-interface, tkn, kubescape, policy-controller, zarf, goreleaser, tekton-chains, ratify, tflint, slsa-verifier, aactl, crossplane, kyverno-notation-aws...
GHSA-47Q9-M4WW-924M vulnerabilities
Vulnerabilities for packages: ko, teleport, gitsign, falcoctl, spire-server, trivy-operator, kyverno, neuvector-sigstore-interface, tkn, kubescape, policy-controller, zarf, goreleaser, tekton-chains, ratify, tflint, slsa-verifier, aactl, crossplane, kyverno-notation-aws...
CVE-2026-50195 vulnerabilities
Vulnerabilities for packages: datadog-agent, skaffold, kube-mgmt-fips, harvester, cloudbeat-fips, helm-fips, spegel-fips, tekton-pipelines, kubescape-server, consul-k8s, buildkitd-fips, chartmuseum-fips, kubescape, docker-compose, kubevela, spegel, zot, trivy-operator, k9s, google-osconfig-agent,...
GHSA-33VJ-92QQ-66HC vulnerabilities
Vulnerabilities for packages: datadog-agent, skaffold, kube-mgmt-fips, harvester, cloudbeat-fips, helm-fips, spegel-fips, tekton-pipelines, kubescape-server, consul-k8s, buildkitd-fips, chartmuseum-fips, kubescape, docker-compose, kubevela, spegel, zot, trivy-operator, k9s, google-osconfig-agent,...
CVE-2026-53489 vulnerabilities
Vulnerabilities for packages: datadog-agent, skaffold, kube-mgmt-fips, harvester, cloudbeat-fips, helm-fips, spegel-fips, tekton-pipelines, kubescape-server, consul-k8s, buildkitd-fips, chartmuseum-fips, kubescape, docker-compose, kubevela, spegel, zot, trivy-operator, k9s, google-osconfig-agent,...
GHSA-CVXM-645Q-P574 vulnerabilities
Vulnerabilities for packages: datadog-agent, skaffold, kube-mgmt-fips, harvester, cloudbeat-fips, helm-fips, spegel-fips, tekton-pipelines, kubescape-server, consul-k8s, buildkitd-fips, chartmuseum-fips, kubescape, docker-compose, kubevela, spegel, zot, trivy-operator, k9s, google-osconfig-agent,...
CVE-2026-53492 vulnerabilities
Vulnerabilities for packages: datadog-agent, skaffold, kube-mgmt-fips, harvester, cloudbeat-fips, helm-fips, spegel-fips, tekton-pipelines, kubescape-server, consul-k8s, buildkitd-fips, chartmuseum-fips, kubescape, docker-compose, kubevela, spegel, zot, trivy-operator, k9s, google-osconfig-agent,...
GHSA-RGH6-RFWX-V388 vulnerabilities
Vulnerabilities for packages: datadog-agent, skaffold, kube-mgmt-fips, harvester, cloudbeat-fips, helm-fips, spegel-fips, tekton-pipelines, kubescape-server, consul-k8s, buildkitd-fips, chartmuseum-fips, kubescape, docker-compose, kubevela, spegel, zot, trivy-operator, k9s, google-osconfig-agent,...