61 matches found
GHSA-MPWR-8VM7-H73F vulnerabilities
Vulnerabilities for packages: x509-certificate-exporter, crossplane-provider-azure-netapp, telegraf, crossplane-provider-azure-operationalinsights, crossplane-provider-azure-servicefabric, crossplane-provider-azure-servicelinker, crossplane-provider-azure-signalrservice, commercial-grafana,...
GHSA-MPWR-8VM7-H73F vulnerabilities
Vulnerabilities for packages: telegraf, crossplane-provider-azure-sql, crossplane-provider-azure-managedidentity, splunk-otel-collector, nfpm, crossplane-provider-azure-authorization, crossplane-provider-family-azure, crossplane-provider-azure-storage, x509-certificate-exporter, goreleaser, nucle...
GHSA-65XW-VW82-R86X vulnerabilities
Vulnerabilities for packages: crossplane-provider-keycloak, nuclei, crossplane-provider-aws-firehose, crossplane-provider-aws-lambda, crossplane-provider-aws-dynamodb, crossplane-provider-aws-sqs, grafana-alloy, crossplane-provider-aws-rds, crossplane-provider-aws-elasticache,...
GHSA-65XW-VW82-R86X vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-kms, crossplane-provider-aws-ec2-fips, crossplane-provider-aws-kinesis-fips, crossplane-provider-aws-rds-fips, crossplane-provider-aws-elasticache-fips, crossplane-provider-aws-kms-fips, crossplane-provider-aws-sqs, amazon-cloudwatch-agent-fip...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: bento, goreleaser, opentelemetry-collector-contrib, cert-manager-webhook-pdns, grafana-alloy, crossplane-provider-aws-elasticache, cilium-cli, pulumi-language-dotnet, pulumi-language-java, crossplane-provider-aws-cloudwatchlogs, trivy, crossplane-provider-aws-ec2,...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: bento, goreleaser, opentelemetry-collector-contrib, cert-manager-webhook-pdns, grafana-alloy, crossplane-provider-aws-elasticache, cilium-cli, pulumi-language-dotnet, pulumi-language-java, crossplane-provider-aws-cloudwatchlogs, trivy, crossplane-provider-aws-ec2,...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-kms, bento-fips, crossplane-provider-aws-ec2-fips, crossplane-provider-aws-kinesis-fips, crossplane-provider-aws-rds-fips, crossplane-provider-aws-elasticache-fips, crossplane-provider-aws-kms-fips, kyverno-policy-reporter-fips,...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-kms, bento-fips, crossplane-provider-aws-ec2-fips, crossplane-provider-aws-kinesis-fips, crossplane-provider-aws-rds-fips, crossplane-provider-aws-elasticache-fips, crossplane-provider-aws-kms-fips, kyverno-policy-reporter-fips,...
AZL-78653 CVE-2026-27141 affecting package azl-otel-collector 0.127.0-1
Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, kubernetes-dashboard-metrics-scraper, grpcurl, croc, knative-operator, mariadb-operator, argo-rollouts, gosu, delve, karma, nvidia-container-toolkit, crossplane-provider-azure-storage, lvm-driver, go-jsonnet, docker-cli-buildx, kind,...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: ingress-nginx-controller, kubernetes-dashboard-metrics-scraper, grpcurl, croc, knative-operator, mariadb-operator, argo-rollouts, karma, delve, nvidia-container-toolkit, crossplane-provider-azure-storage, lvm-driver, docker-cli-buildx, kind, portieris, syft,...
GHSA-8JVR-VH7G-F8GX vulnerabilities
Vulnerabilities for packages: wireguard-go, prometheus, crossplane-provider-aws-ec2-fips, kube-bench, docker-credential-acr-env-fips, gotestsum, gops-fips, wavefront-collector-for-kubernetes, crossplane-provider-aws-kms-fips, longhorn-backing-image-manager, petname, chart-testing-fips,...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: wireguard-go, prometheus, crossplane-provider-aws-ec2-fips, kube-bench, docker-credential-acr-env-fips, gotestsum, gops-fips, wavefront-collector-for-kubernetes, crossplane-provider-aws-kms-fips, longhorn-backing-image-manager, petname, chart-testing-fips,...
AZL-76790 CVE-2025-58190 affecting package azl-otel-collector 0.127.0-1
The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...
AZL-75372 CVE-2025-11065 affecting package azl-otel-collector 0.127.0-1
A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in...
CVE-2025-12044 vulnerabilities
Vulnerabilities for packages: splunk-otel-collector...
CVE-2025-11621 vulnerabilities
Vulnerabilities for packages: splunk-otel-collector...
GHSA-7RX2-769V-HRWF vulnerabilities
Vulnerabilities for packages: splunk-otel-collector...
GHSA-6C5R-4WFC-3MCX vulnerabilities
Vulnerabilities for packages: splunk-otel-collector...
CVE-2025-6014 vulnerabilities
Vulnerabilities for packages: splunk-otel-collector...