Lucene search
K

33 matches found

Wolfi
Wolfi
added 2026/04/11 2:51 a.m.8 views

GHSA-FV83-X2XW-2J55 vulnerabilities

Vulnerabilities for packages: dgraph, flux, apko, malcontent, newrelic-infra-operator, smarter-device-manager, clickhouse-operator, oras, secrets-store-csi-driver-provider-aws, temporal, kubewatch, victoriametrics-cluster, github-mcp-server, envoy-ratelimit, aws-privateca-issuer,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/02/10 1:17 p.m.5 views

GHSA-8JVR-VH7G-F8GX vulnerabilities

Vulnerabilities for packages: kubeflow, kaf, mockgen, kubernetes, regclient, consul, k8s-metacollector-fips, gatus-fips, grafana-image-renderer, velero-plugin-for-aws-fips, cluster-proportional-autoscaler, xeol, cilium-certgen, kserve-rest-proxy, step-fips, task-fips, wait-for-port,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/02/10 1:17 p.m.10 views

CVE-2025-61732 vulnerabilities

Vulnerabilities for packages: kubeflow, kaf, mockgen, kubernetes, regclient, consul, k8s-metacollector-fips, gatus-fips, grafana-image-renderer, velero-plugin-for-aws-fips, cluster-proportional-autoscaler, xeol, cilium-certgen, kserve-rest-proxy, step-fips, task-fips, wait-for-port,...

8.6CVSS7.1AI score0.00472EPSS
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-0837

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.01312EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-1539

Malicious code in bioql PyPI...

6.5CVSS6AI score0.00372EPSS
Exploits1References8
Wolfi
Wolfi
added 2025/09/20 2:20 p.m.7 views

GHSA-GWRF-JF3H-W649 vulnerabilities

Vulnerabilities for packages: kube-vip, gostatsd, docker-credential-ecr-login, kserve-rest-proxy, secrets-store-csi-driver-provider-aws, k8sgpt-operator, pvc-autoresizer, vault-k8s, bank-vaults, confluent-common-docker, ctop, sftpgo-plugin-geoipfilter, rancher-machine, octo-sts,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2025/09/20 1:30 p.m.6 views

CVE-2025-47906 vulnerabilities

Vulnerabilities for packages: terraform-provider-sendgrid-fips, kube-vip-cloud-provider, kserve-rest-proxy, local-path-provisioner, confluent-common-docker, knative-serving, nemo, secrets-store-csi-driver-fips, sftpgo-plugin-pubsub, blob-csi-fips, kube-logging-operator-custom-runner-fips,...

6.5CVSS6.5AI score0.00489EPSS
Exploits1
Chainguard
Chainguard
added 2025/09/20 1:30 p.m.6 views

GHSA-GWRF-JF3H-W649 vulnerabilities

Vulnerabilities for packages: terraform-provider-sendgrid-fips, kube-vip-cloud-provider, kserve-rest-proxy, local-path-provisioner, confluent-common-docker, knative-serving, nemo, secrets-store-csi-driver-fips, sftpgo-plugin-pubsub, blob-csi-fips, kube-logging-operator-custom-runner-fips,...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2025/02/25 3:16 p.m.52 views

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: grype, vertical-pod-autoscaler, newrelic-infra-operator, nats-server, kube-rbac-proxy, argo-workflows, capslock, docker-credential-ecr-login, k8sgpt, secrets-store-csi-driver-provider-aws, dex, nri-nginx, bom, kubernetes-dashboard, kor, terraform-docs, vite,...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2024/06/11 5:16 p.m.113 views

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: flux, grafana-agent-operator, argo-workflows, k8sgpt, opentelemetry-collector, buildkitd, ksops, sqlpad, step, py3-azure-identity, zot, py3-cassandra-medusa, datadog-agent, step-ca, falcoctl, kubescape, timestamp-authority, pulumi, thanos, rook, druid, bank-vaults,...

5.5CVSS6.5AI score0.00788EPSS
Exploits0
Wolfi
Wolfi
added 2024/03/06 12:31 a.m.423 views

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: grype, vertical-pod-autoscaler, newrelic-infra-operator, crossplane-provider-aws-iam, argo-workflows, capslock, crossplane-provider-aws-route53, k8sgpt, kube-fluentd-operator, dex, kubeflow, secrets-store-csi-driver-provider-aws, kubernetes-dashboard, kor,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2024/03/05 11:15 p.m.77 views

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: kubeflow, kaf, kubernetes, slsa-verifier, kaniko, cluster-proportional-autoscaler, helm-operator-fips, kubeflow-fips, grpc-health-probe, nfs-subdir-external-provisioner, crossplane-provider-aws-kinesis, ctop, cosign-fips, prometheus-postgres-exporter, eksctl, trillia...

7.5CVSS6.7AI score0.01262EPSS
Exploits0
Wolfi
Wolfi
added 2023/10/25 9:17 p.m.179 views

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: src, dgraph, up, terraform-provider-sendgrid, buildkitd, falco, kubeflow, kubevela, cortex, k3d, spark-operator, slsa-verifier, kubescape, scorecard, prometheus-blackbox-exporter, aactl...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2023/10/25 9:17 p.m.83 views

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: kubeflow, conftest-fips, cortex, slsa-verifier, scorecard, buildkitd, prometheus-blackbox-exporter, spark-operator, terraform-provider-sendgrid-fips, timestamp-authority-fips, terraform-provider-sendgrid, metrics-server-fips, kubernetes-csi-livenessprobe-fips,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2023/10/11 10:15 p.m.2958 views

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: crossplane-provider-azure, kaf, flux-notification-controller, kubeflow, runc, slsa-verifier, buildkitd, prometheus-blackbox-exporter, terraform-provider-sendgrid-fips, prometheus-operator, smarter-device-manager-fips, dynamic-localpv-provisioner-fips, kubeflow-fips,...

7.5CVSS6.7AI score0.03796EPSS
Exploits0
Wolfi
Wolfi
added 2023/10/10 9:28 p.m.43 views

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: grype, dex, kubeflow, bom, node-problem-detector, nats, coredns, flux-kustomize-controller, oauth2-proxy, terraform, secrets-store-csi-driver-provider-gcp, kubernetes-csi-livenessprobe, nghttp2, amass, hey, atlantis, mc, prometheus-blackbox-exporter, gomplate,...

5.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/06/26 12:0 a.m.9 views

The vulnerability of the secrets-store-csi-driver driver of the Kubernetes cluster management software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the secrets-store-csi-driver driver in the Kubernetes cluster management software is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

6.5CVSS6.2AI score0.00372EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2023/06/08 2:59 a.m.27 views

Insertion Of Sensitive Information Into Log File

sigs.k8s.io/secrets-store-csi-driver is vulnerable to Insertion of Sensitive Information Into Log File. An attacker with access to the driver logs could observe service account tokens due to the NodePublishVolume function of nodeserver.go...

6.5CVSS6.8AI score0.00372EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2023/06/07 3:15 p.m.32 views

CVE-2023-2878

Kubernetes secrets-store-csi-driver in versions before 1.3.3 discloses service account tokens in logs...

6.5CVSS6.4AI score0.00372EPSS
Exploits1References3
Wolfi
Wolfi
added 2023/06/07 3:15 p.m.39 views

CVE-2023-2878 vulnerabilities

Vulnerabilities for packages: secrets-store-csi-driver...

6.5CVSS6.4AI score0.00372EPSS
Exploits1
Rows per page
Query Builder