11 matches found
CVE-2026-29181 vulnerabilities
Vulnerabilities for packages: cloudflared, crossplane-provider-sql, promxy, step-ca, crossplane-provider-aws-memorydb, redpanda, step-issuer, crossplane-provider-aws-cloudfront, step, crossplane-provider-aws-iam, db-operator, cadvisor, ko, cloud-provider-vsphere, crossplane-provider-aws-firehose,...
GHSA-MH2Q-Q3FH-2475 vulnerabilities
Vulnerabilities for packages: cloudflared, crossplane-provider-sql, promxy, step-ca, crossplane-provider-aws-memorydb, redpanda, step-issuer, crossplane-provider-aws-cloudfront, step, crossplane-provider-aws-iam, db-operator, cadvisor, ko, cloud-provider-vsphere, crossplane-provider-aws-firehose,...
CLEANSTART-2026-SU44499 net/url package does not set a limit on the number of query parameters in a query
Multiple security vulnerabilities affect the promxy package. The net/url package does not set a limit on the number of query parameters in a query. See references for individual vulnerability details...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: telegraf, apisix-ingress-controller, kine, atlantis, kots, dgraph, crossplane-provider-sql, kaf, wal-g, kube-state-metrics, promxy, cluster-autoscaler, kafka-proxy, k8sgpt-operator, memcached-exporter, migrate, cosign, fscrypt, terraform-docs, smarter-device-manager,...
CVE-2026-27142 vulnerabilities
Vulnerabilities for packages: telegraf, apisix-ingress-controller, cloudflared, atlantis, azurefile-csi, kots, kaf, wal-g, kube-state-metrics, prometheus-alertmanager, promxy, cluster-autoscaler, kafka-proxy, memcached-exporter, migrate, terraform-provider-grafana, azuredisk-csi, fscrypt,...
CVE-2026-27139 vulnerabilities
Vulnerabilities for packages: supercronic, kaniko, kaf, wal-g, prometheus-alertmanager, memcached-exporter, ctop, speedtest-go, fscrypt, cluster-api, s5cmd, crossplane-provider-aws-memorydb, kubernetes-replicator, azure-workload-identity-webhook, crossplane-provider-aws-cloudfront, step, trillian...
GHSA-RV83-G57W-FR8J vulnerabilities
Vulnerabilities for packages: supercronic, kaniko, kaf, wal-g, prometheus-alertmanager, memcached-exporter, ctop, speedtest-go, fscrypt, cluster-api, s5cmd, crossplane-provider-aws-memorydb, kubernetes-replicator, azure-workload-identity-webhook, crossplane-provider-aws-cloudfront, step, trillian...
GHSA-J3GX-2473-5FP8 vulnerabilities
Vulnerabilities for packages: kubecolor, supercronic, kaniko, kaf, wal-g, prometheus-alertmanager, memcached-exporter, ctop, speedtest-go, fscrypt, cluster-api, s5cmd, crossplane-provider-aws-memorydb, kubernetes-replicator, azure-workload-identity-webhook, crossplane-provider-aws-cloudfront, ste...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: telegraf, apisix-ingress-controller, cloudflared, atlantis, azurefile-csi, kots, kaf, wal-g, kube-state-metrics, prometheus-alertmanager, promxy, cluster-autoscaler, kafka-proxy, memcached-exporter, migrate, terraform-provider-grafana, azuredisk-csi, fscrypt,...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: kubecolor, supercronic, kaniko, kaf, wal-g, prometheus-alertmanager, memcached-exporter, ctop, speedtest-go, fscrypt, cluster-api, s5cmd, crossplane-provider-aws-memorydb, kubernetes-replicator, azure-workload-identity-webhook, crossplane-provider-aws-cloudfront, ste...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: azure-container-networking, chartmuseum-fips, crossplane-provider-aws-ecr, flux-source-controller, skopeo, crossplane-provider-aws-sqs-fips, grpc-health-probe-fips, ceph-csi-operator-fips, crossplane-provider-gcp, knative-operator-fips, seaweedfs-operator-fips,...