CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2026/06/10 5:24 p.m.•5 views

GHSA-CXH2-4639-VMC5 OpenTelemetry Operator for Kubernetes's ServiceMonitor bearerTokenFile reads arbitrary local file and sends contents as bearer auth

Affected Repository: github.com/open-telemetry/opentelemetry-operator Component: cmd/otel-allocator TargetAllocator Companion: Prometheus Operator API types CRDs Summary OpenTelemetry Operator's TargetAllocator watches ServiceMonitor resources via the Prometheus Operator CR watcher and converts...

7.7CVSS5.6AI score0.00017EPSS

Exploits0References3

Wolfi•added 2026/06/05 7:48 a.m.•13 views

CVE-2026-40898 vulnerabilities

Vulnerabilities for packages: kyverno-policy-reporter-ui, prometheus-blackbox-exporter, spegel, k8sgateway, dkron, frp, kargo, kubernetes-dns-node-cache, q, k3s, coredns, traefik, ipfs-cluster, opentelemetry-operator, kyverno-policy-reporter, teleport, kubo, kube-metrics-adapter...

7.5CVSS5.8AI score0.00488EPSS

Exploits0

Wolfi•added 2026/05/14 7:48 p.m.•15 views

CVE-2026-44903 vulnerabilities

Vulnerabilities for packages: trillian, amazon-cloudwatch-agent-operator, opentelemetry-collector, tempo, istio, minio, loki, telegraf, cloud-sql-proxy, mc, splunk-otel-collector, karma, minio-object-browser, opentelemetry-collector-contrib, fluent-bit-plugin-loki, opentelemetry-operator,...

6.1CVSS5.8AI score0.00146EPSS

Exploits0

Chainguard•added 2026/02/04 7:17 p.m.•8 views

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: step-issuer, percona-server-mongodb-operator-fips, opentelemetry-operator-fips, cert-manager-webhook-pdns-fips, cert-manager-istio-csr, gitlab-operator, aws-privateca-issuer-fips, cert-manager-csi-driver, aws-privateca-issuer, cert-manager-openshift-routes,...

5.9CVSS5.8AI score0.00349EPSS

Exploits0

Wolfi•added 2026/02/04 1:48 p.m.•3 views

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: cert-manager-csi-driver, cert-manager-webhook-pdns, cert-manager-cmctl, cert-manager-istio-csr, percona-server-mongodb-operator, step-issuer, opentelemetry-operator, mariadb-operator, aws-privateca-issuer...

5.9CVSS5.8AI score0.00349EPSS

Exploits0

Wolfi•added 2026/02/03 7:48 p.m.•3 views

GHSA-GX3X-VQ4P-MHHV vulnerabilities

5.8AI score

Exploits0

Chainguard•added 2026/02/03 7:17 p.m.•4 views

GHSA-GX3X-VQ4P-MHHV vulnerabilities

5.8AI score

Exploits0

Wolfi•added 2025/03/22 4:43 p.m.•47 views

CVE-2025-30204 vulnerabilities

Vulnerabilities for packages: spire-server, terragrunt, secrets-store-csi-driver-provider-azure, step-kms-plugin, cert-manager, buildkitd, cosign, falcosidekick, policy-controller, aws-eks-pod-identity-agent, thanos, sops, rancher, gomplate, loki, timestamp-authority, zot, harbor-registry, mc,...

7.5CVSS6.6AI score0.00693EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by