51 matches found
CVE-2026-44903 vulnerabilities
Vulnerabilities for packages: mcp-grafana, node-problem-detector, opentelemetry-collector, tempo, opentelemetry-operator, prometheus-pushgateway, opentelemetry-collector-contrib, loki, cloud-sql-proxy, fluent-bit-plugin-loki, metrics-server, mc, minio-operator, aws-otel-collector, keda,...
GHSA-VFFH-X6R8-XX99 vulnerabilities
Vulnerabilities for packages: mcp-grafana, node-problem-detector, grafana-pyroscope, tempo, prometheus-pushgateway, loki, cloud-sql-proxy, mc, minio-operator, aws-otel-collector, keda, minio, telegraf, istio, certificate-transparency, prometheus, trillian, jaeger, datadog-agent, karma,...
CVE-2026-40179 vulnerabilities
Vulnerabilities for packages: mcp-grafana, node-problem-detector, grafana-pyroscope, tempo, prometheus-pushgateway, loki, cloud-sql-proxy, mc, minio-operator, aws-otel-collector, keda, minio, telegraf, istio, certificate-transparency, prometheus, trillian, jaeger, datadog-agent, karma,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: dask-gateway, kubernetes-csi-node-driver-registrar, kwok, flux-notification-controller, kube-vip, kube-arangodb, flux-image-reflector-controller, fscrypt, newrelic-infrastructure-agent, chartmuseum, argocd-image-updater, cerbos, sftpgo-plugin-geoipfilter, terraform,...
CLEANSTART-2026-KR58137 Security fixes for CVE-2025-68121, CVE-2026-25679, CVE-2026-27137, CVE-2026-27138, CVE-2026-27139, CVE-2026-27142, ghsa-6v2p-p543-phr9 applied in versions: 0.8.19-r0, 0.8.19-r1, 0.8.19-r2
Multiple security vulnerabilities affect the node-problem-detector package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2023-48795 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2023-48795 affecting package node-problem-detector for versions less than 0.8.20-2. An upgraded version of the package is available that resolves this issue...
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.20-2. A patched version of the package is available...
CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2. A patched version of the package is available...
CVE-2023-44487 affecting package node-problem-detector for versions less than 0.8.10-16
CVE-2023-44487 affecting package node-problem-detector for versions less than 0.8.10-16. A patched version of the package is available...
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.17-6
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.17-6. A patched version of the package is available...
AZL-57323 CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2
SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...
AZL-57315 CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.20-2
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing...
AZL-57410 CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.17-6
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: dask-gateway, wireguard-go, grype, kwok, ctop, litefs, flux-image-reflector-controller, newrelic-infrastructure-agent, chartmuseum, nats, pombump, terraform, envoy-ratelimit, speedtest-go, bom, gosu, scorecard, kpt, logstash-exporter, docker-credential-gcr,...
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: dask-gateway, wireguard-go, grype, kwok, ctop, litefs, flux-image-reflector-controller, newrelic-infrastructure-agent, chartmuseum, nats, pombump, terraform, envoy-ratelimit, speedtest-go, bom, gosu, scorecard, kpt, logstash-exporter, docker-credential-gcr,...
CVE-2023-45288 affecting package node-problem-detector for versions less than 0.8.15-4
CVE-2023-45288 affecting package node-problem-detector for versions less than 0.8.15-4. A patched version of the package is available...
Azure Linux 3.0 Security Update: application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector (CVE-2021-44716)
The version of application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-44716...
CVE-2024-45338 affecting package node-problem-detector for versions less than 0.8.15-3
CVE-2024-45338 affecting package node-problem-detector for versions less than 0.8.15-3. A patched version of the package is available...
AZL-54410 CVE-2024-45338 affecting package node-problem-detector for versions less than 0.8.15-3
An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...
CVE-2024-24786 affecting package node-problem-detector for versions less than 0.8.15-2
CVE-2024-24786 affecting package node-problem-detector for versions less than 0.8.15-2. A patched version of the package is available...