51 matches found
CVE-2026-44903 vulnerabilities
Vulnerabilities for packages: cloud-sql-proxy, telegraf, mcp-grafana, metrics-server, istio, opentelemetry-collector-contrib, karma, prometheus, splunk-otel-collector, loki, mc, certificate-transparency, opentelemetry-operator, node-problem-detector, trillian, jaeger, prometheus-pushgateway,...
CVE-2026-40179 vulnerabilities
Vulnerabilities for packages: cloud-sql-proxy, telegraf, mcp-grafana, istio, karma, prometheus, splunk-otel-collector, loki, mc, certificate-transparency, minio-operator, node-problem-detector, trillian, jaeger, prometheus-pushgateway, keda, datadog-agent, minio, minio-object-browser...
GHSA-VFFH-X6R8-XX99 vulnerabilities
Vulnerabilities for packages: cloud-sql-proxy, telegraf, mcp-grafana, istio, karma, prometheus, splunk-otel-collector, loki, mc, certificate-transparency, minio-operator, node-problem-detector, trillian, jaeger, prometheus-pushgateway, keda, datadog-agent, minio, minio-object-browser...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: crossplane, kargo, ko, step-ca, rancher-agent, libnvidia-container, lazydocker, cloudnative-pg, wal-g, grafana-agent-operator, docker-credential-gcr, witness, splunk-otel-collector, cluster-autoscaler, kots, prometheus-adapter, promxy, crossplane-provider-sql, cerbos...
CLEANSTART-2026-KR58137 Security fixes for CVE-2025-68121, CVE-2026-25679, CVE-2026-27137, CVE-2026-27138, CVE-2026-27139, CVE-2026-27142, ghsa-6v2p-p543-phr9 applied in versions: 0.8.19-r0, 0.8.19-r1, 0.8.19-r2
Multiple security vulnerabilities affect the node-problem-detector package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.20-2. A patched version of the package is available...
CVE-2023-48795 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2023-48795 affecting package node-problem-detector for versions less than 0.8.20-2. An upgraded version of the package is available that resolves this issue...
CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2. A patched version of the package is available...
CVE-2023-44487 affecting package node-problem-detector for versions less than 0.8.10-16
CVE-2023-44487 affecting package node-problem-detector for versions less than 0.8.10-16. A patched version of the package is available...
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.17-6
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.17-6. A patched version of the package is available...
AZL-57410 CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.17-6
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing...
AZL-57323 CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2
SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...
AZL-57315 CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.20-2
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: cert-exporter, crossplane, velero, hello-world-golang, q, docker-credential-gcr, dynamic-localpv-provisioner, prometheus-adapter, wire-go, slsa-verifier, hey, yq, cfssl, mockery, kube-rbac-proxy, kube-logging-operator, nodetaint, gh, fuse-overlayfs-snapshotter,...
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: cert-exporter, crossplane, velero, hello-world-golang, q, docker-credential-gcr, dynamic-localpv-provisioner, prometheus-adapter, wire-go, slsa-verifier, hey, yq, cfssl, mockery, kube-rbac-proxy, kube-logging-operator, nodetaint, gh, fuse-overlayfs-snapshotter,...
CVE-2023-45288 affecting package node-problem-detector for versions less than 0.8.15-4
CVE-2023-45288 affecting package node-problem-detector for versions less than 0.8.15-4. A patched version of the package is available...
Azure Linux 3.0 Security Update: application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector (CVE-2021-44716)
The version of application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-44716...
CVE-2024-45338 affecting package node-problem-detector for versions less than 0.8.15-3
CVE-2024-45338 affecting package node-problem-detector for versions less than 0.8.15-3. A patched version of the package is available...
AZL-54410 CVE-2024-45338 affecting package node-problem-detector for versions less than 0.8.15-3
An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...
CVE-2024-24786 affecting package node-problem-detector for versions less than 0.8.15-2
CVE-2024-24786 affecting package node-problem-detector for versions less than 0.8.15-2. A patched version of the package is available...