60 matches found
GHSA-FF52-PH69-CF7X vulnerabilities
Vulnerabilities for packages: gcp-compute-persistent-disk-csi-driver, croc, crossplane-provider-aws-s3, crossplane-provider-aws-eks, src, k8ssandra-operator, openbao-k8s, authservice, neuvector-dbgen, docker-compose, telegraf, cluster-autoscaler, manifest-tool, kube-arangodb,...
CVE-2026-27136 affecting package prometheus-adapter for versions less than 0.12.0-6
CVE-2026-27136 affecting package prometheus-adapter for versions less than 0.12.0-6. A patched version of the package is available...
CVE-2026-25680 affecting package prometheus-adapter for versions less than 0.12.0-6
CVE-2026-25680 affecting package prometheus-adapter for versions less than 0.12.0-6. A patched version of the package is available...
CVE-2026-42506 affecting package prometheus-adapter for versions less than 0.12.0-6
CVE-2026-42506 affecting package prometheus-adapter for versions less than 0.12.0-6. A patched version of the package is available...
CVE-2026-42502 affecting package prometheus-adapter for versions less than 0.12.0-6
CVE-2026-42502 affecting package prometheus-adapter for versions less than 0.12.0-6. A patched version of the package is available...
CVE-2026-25681 affecting package prometheus-adapter for versions less than 0.12.0-6
CVE-2026-25681 affecting package prometheus-adapter for versions less than 0.12.0-6. A patched version of the package is available...
CVE-2026-39821 affecting package prometheus-adapter for versions less than 0.12.0-6
CVE-2026-39821 affecting package prometheus-adapter for versions less than 0.12.0-6. A patched version of the package is available...
CVE-2025-47911 affecting package prometheus-adapter for versions less than 0.12.0-5
CVE-2025-47911 affecting package prometheus-adapter for versions less than 0.12.0-5. A patched version of the package is available...
CVE-2025-58190 affecting package prometheus-adapter for versions less than 0.12.0-5
CVE-2025-58190 affecting package prometheus-adapter for versions less than 0.12.0-5. A patched version of the package is available...
CVE-2025-47911 affecting package prometheus-adapter for versions less than 0.10.0-19
CVE-2025-47911 affecting package prometheus-adapter for versions less than 0.10.0-19. A patched version of the package is available...
AZL-77073 CVE-2025-58190 affecting package prometheus-adapter 0.12.0-4
The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...
AZL-76983 CVE-2025-47911 affecting package prometheus-adapter for versions less than 0.10.0-19
The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...
AZL-77070 CVE-2025-47911 affecting package prometheus-adapter 0.12.0-4
The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...
CVE-2025-61727 vulnerabilities
Vulnerabilities for packages: snyk-cli, chisel, mockery, pluto, metrics-agent, kubelet-csr-approver, src, temporal, kube-metrics-adapter, postgres-operator, telegraf, thanos-operator, grafana-pyroscope, kserve-rest-proxy, mountpoint-s3-csi-driver, rabbitmq-messaging-topology-operator,...
GHSA-5MH9-3JWC-RP59 vulnerabilities
Vulnerabilities for packages: snyk-cli, chisel, mockery, pluto, metrics-agent, kubelet-csr-approver, src, temporal, kube-metrics-adapter, postgres-operator, telegraf, thanos-operator, grafana-pyroscope, kserve-rest-proxy, mountpoint-s3-csi-driver, rabbitmq-messaging-topology-operator,...
GHSA-WCW9-47FP-RRFR vulnerabilities
Vulnerabilities for packages: packer-fips, gcp-compute-persistent-disk-csi-driver-fips, sbom-scorecard, redpanda, ipfs-cluster-fips, spire-controller-manager-fips, pulumi-kubernetes-operator, grafana-pyroscope, grpcurl-fips, vendir, nvidia-nsight-compute-13.1, volsync-fips, whereabouts-fips,...
CVE-2025-58183 vulnerabilities
Vulnerabilities for packages: packer-fips, gcp-compute-persistent-disk-csi-driver-fips, sbom-scorecard, redpanda, ipfs-cluster-fips, spire-controller-manager-fips, pulumi-kubernetes-operator, grafana-pyroscope, grpcurl-fips, vendir, nvidia-nsight-compute-13.1, whereabouts-fips,...
CVE-2025-58188 vulnerabilities
Vulnerabilities for packages: packer-fips, gcp-compute-persistent-disk-csi-driver-fips, sbom-scorecard, redpanda, ipfs-cluster-fips, spire-controller-manager-fips, pulumi-kubernetes-operator, grafana-pyroscope, grpcurl-fips, vendir, nvidia-nsight-compute-13.1, volsync-fips, whereabouts-fips,...
CVE-2025-61724 vulnerabilities
Vulnerabilities for packages: packer-fips, gcp-compute-persistent-disk-csi-driver-fips, sbom-scorecard, redpanda, ipfs-cluster-fips, spire-controller-manager-fips, pulumi-kubernetes-operator, grafana-pyroscope, grpcurl-fips, vendir, nvidia-nsight-compute-13.1, volsync-fips, whereabouts-fips,...
CVE-2025-58189 vulnerabilities
Vulnerabilities for packages: packer-fips, gcp-compute-persistent-disk-csi-driver-fips, sbom-scorecard, redpanda, ipfs-cluster-fips, spire-controller-manager-fips, pulumi-kubernetes-operator, grafana-pyroscope, grpcurl-fips, vendir, nvidia-nsight-compute-13.1, volsync-fips, whereabouts-fips,...