Lucene search
K

8 matches found

OSV
OSV
added 2026/06/10 5:24 p.m.10 views

GHSA-CXH2-4639-VMC5 OpenTelemetry Operator for Kubernetes's ServiceMonitor bearerTokenFile reads arbitrary local file and sends contents as bearer auth

Affected Repository: github.com/open-telemetry/opentelemetry-operator Component: cmd/otel-allocator TargetAllocator Companion: Prometheus Operator API types CRDs Summary OpenTelemetry Operator's TargetAllocator watches ServiceMonitor resources via the Prometheus Operator CR watcher and converts...

7.7CVSS5.6AI score0.00017EPSS
Exploits0References3
Wolfi
Wolfi
added 2026/06/05 7:48 a.m.16 views

CVE-2026-40898 vulnerabilities

Vulnerabilities for packages: dkron, spegel, kubernetes-dns-node-cache, teleport, q, kyverno-policy-reporter-ui, kubo, frp, kyverno-policy-reporter, kube-metrics-adapter, ipfs-cluster, jitsucom-bulker, k8sgateway, kargo, coredns, opentelemetry-operator, k3s, traefik, prometheus-blackbox-exporter...

7.5CVSS6.1AI score0.00279EPSS
Exploits0
Wolfi
Wolfi
added 2026/05/14 7:48 p.m.21 views

CVE-2026-44903 vulnerabilities

Vulnerabilities for packages: node-problem-detector, prometheus, datadog-agent, karma, minio, mc, jaeger, prometheus-pushgateway, keda, istio, trillian, cloud-sql-proxy, fluent-bit-plugin-loki, metrics-server, tempo, amazon-cloudwatch-agent-operator, loki, minio-object-browser,...

6.1CVSS6.1AI score0.00182EPSS
Exploits0
Chainguard
Chainguard
added 2026/02/04 7:17 p.m.8 views

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: cert-manager-google-cas-issuer, cert-manager-istio-csr-fips, cert-manager-google-cas-issuer-fips, cert-manager-csi-driver-fips, percona-server-mongodb-operator, percona-xtradb-cluster-operator-fips, opentelemetry-operator-fips, aws-privateca-issuer-fips,...

5.9CVSS6.1AI score0.00349EPSS
Exploits0
Wolfi
Wolfi
added 2026/02/04 1:48 p.m.7 views

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: cert-manager-csi-driver, mariadb-operator, aws-privateca-issuer, cert-manager-webhook-pdns, opentelemetry-operator, cert-manager-cmctl, percona-server-mongodb-operator, cert-manager-istio-csr, step-issuer...

5.9CVSS6.1AI score0.00349EPSS
Exploits0
Wolfi
Wolfi
added 2026/02/03 7:48 p.m.5 views

GHSA-GX3X-VQ4P-MHHV vulnerabilities

Vulnerabilities for packages: cert-manager-csi-driver, mariadb-operator, aws-privateca-issuer, cert-manager-webhook-pdns, opentelemetry-operator, cert-manager-cmctl, percona-server-mongodb-operator, cert-manager-istio-csr, step-issuer...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/02/03 7:17 p.m.5 views

GHSA-GX3X-VQ4P-MHHV vulnerabilities

Vulnerabilities for packages: cert-manager-google-cas-issuer, cert-manager-istio-csr-fips, cert-manager-google-cas-issuer-fips, cert-manager-csi-driver-fips, percona-server-mongodb-operator, percona-xtradb-cluster-operator-fips, opentelemetry-operator-fips, aws-privateca-issuer-fips,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2025/03/22 4:43 p.m.50 views

CVE-2025-30204 vulnerabilities

Vulnerabilities for packages: op-geth, atlantis, crossplane-provider-azure, flux-image-automation-controller, external-dns, aws-eks-pod-identity-agent, velero, cortex, chartmuseum, hydra, mc, kine, tekton-chains, flux-source-controller, zot, mongo-tools, boring-registry, seaweedfs, sops,...

7.5CVSS6.7AI score0.00693EPSS
Exploits0
Rows per page
Query Builder