CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2026/06/10 5:24 p.m.•4 views

GHSA-CXH2-4639-VMC5 OpenTelemetry Operator for Kubernetes's ServiceMonitor bearerTokenFile reads arbitrary local file and sends contents as bearer auth

Affected Repository: github.com/open-telemetry/opentelemetry-operator Component: cmd/otel-allocator TargetAllocator Companion: Prometheus Operator API types CRDs Summary OpenTelemetry Operator's TargetAllocator watches ServiceMonitor resources via the Prometheus Operator CR watcher and converts...

7.7CVSS5.6AI score0.00017EPSS

Exploits0References3

Wolfi•added 2026/06/05 7:48 a.m.•13 views

CVE-2026-40898 vulnerabilities

Vulnerabilities for packages: k8sgateway, kubo, ipfs-cluster, coredns, traefik, kargo, spegel, kube-metrics-adapter, q, kyverno-policy-reporter, kyverno-policy-reporter-ui, prometheus-blackbox-exporter, k3s, frp, kubernetes-dns-node-cache, opentelemetry-operator, teleport, dkron...

7.5CVSS5.8AI score0.00488EPSS

Exploits0

Wolfi•added 2026/05/14 7:48 p.m.•15 views

CVE-2026-44903 vulnerabilities

Vulnerabilities for packages: jaeger, minio-object-browser, tempo, telegraf, prometheus, amazon-cloudwatch-agent-operator, karma, mc, loki, minio, datadog-agent, opentelemetry-collector, splunk-otel-collector, cloud-sql-proxy, metrics-server, prometheus-pushgateway, fluent-bit-plugin-loki,...

6.1CVSS5.8AI score0.00146EPSS

Exploits0

Chainguard•added 2026/02/04 7:17 p.m.•7 views

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: cert-manager-csi-driver, percona-server-mongodb-operator, cert-manager-cmctl, mariadb-operator-fips, cert-manager-openshift-routes, step-issuer, cert-manager-google-cas-issuer, aws-privateca-issuer, mariadb-operator, percona-server-mongodb-operator-fips,...

5.9CVSS5.8AI score0.00349EPSS

Exploits0

Wolfi•added 2026/02/04 1:48 p.m.•3 views

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: step-issuer, mariadb-operator, aws-privateca-issuer, cert-manager-istio-csr, cert-manager-cmctl, cert-manager-webhook-pdns, cert-manager-csi-driver, opentelemetry-operator, percona-server-mongodb-operator...

5.9CVSS5.8AI score0.00349EPSS

Exploits0

Wolfi•added 2026/02/03 7:48 p.m.•3 views

GHSA-GX3X-VQ4P-MHHV vulnerabilities

5.8AI score

Exploits0

Chainguard•added 2026/02/03 7:17 p.m.•4 views

GHSA-GX3X-VQ4P-MHHV vulnerabilities

5.8AI score

Exploits0

Wolfi•added 2025/03/22 4:43 p.m.•47 views

CVE-2025-30204 vulnerabilities

Vulnerabilities for packages: dgraph, telegraf, eksctl, mc, boring-registry, docker, op-geth, pulumi-kubernetes-operator, rclone, opentelemetry-collector, argo-rollouts, opentofu, kyverno-policy-reporter-ui, flux-kustomize-controller, k3s, kubeflow-katib, chezmoi, crossplane-provider-azure,...

7.5CVSS6.6AI score0.00693EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by