Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-31113

Malicious code in bioql PyPI...

9.9CVSS9.1AI score0.00099EPSS
Exploits0References10
RedhatCVE
RedhatCVEadded 2025/09/26 5:49 p.m.2 views

CVE-2025-59823

Project Gardener implements the automated management and operation of Kubernetes clusters as a service. Code injection may be possible in Gardener Extensions for AWS providers prior to version 1.64.0, Azure providers prior to version 1.55.0, OpenStack providers prior to version 1.49.0, and GCP...

9.9CVSS7.1AI score0.00099EPSS
Exploits0References1
OSV
OSVadded 2025/09/25 4:39 p.m.1 views

GHSA-227X-7MH8-3CF6 Gardener provider extensions vulnerable to code injection when Terraform is used for infrastructure provisioning

Impact A security vulnerability was discovered in Gardener when Terraformer is used for infrastructure provisioning. This vulnerability could allow a user with administrative privileges for a Gardener project to obtain control over the seed cluster where the shoot cluster is managed. This CVE...

9.9CVSS9AI score0.00099EPSS
Exploits0References12
Github Security Blog
Github Security Blogadded 2025/09/25 4:39 p.m.5 views

Gardener provider extensions vulnerable to code injection when Terraform is used for infrastructure provisioning

Impact A security vulnerability was discovered in Gardener when Terraformer is used for infrastructure provisioning. This vulnerability could allow a user with administrative privileges for a Gardener project to obtain control over the seed cluster where the shoot cluster is managed. This CVE...

9.9CVSS9.1AI score0.00099EPSS
Exploits0References12Affected Software4
RedhatCVE
RedhatCVEadded 2025/05/21 6:17 p.m.10 views

CVE-2025-47282

Gardener External DNS Management is an environment to manage external DNS entries for a kubernetes cluster. A security vulnerability was discovered in Gardener's External DNS Management prior to version 0.23.6 that could allow a user with administrative privileges for a Gardener project or a user...

9.9CVSS6.8AI score0.00284EPSS
Exploits0References1
Veracode
Veracodeadded 2025/05/21 3:29 a.m.6 views

Privilege Escalation

github.com/gardener/external-dns-management is vulnerable to a privilege escalation. The vulnerability is due to insufficient isolation and access control between shoot clusters and the seed cluster in the external-dns-management component, which allows an attacker with admin access to a shoot...

9.9CVSS6.8AI score0.00284EPSS
Exploits0References2Affected Software2
CVE
CVEadded 2025/05/19 5:53 p.m.33 views

CVE-2025-47282

CVE-2025-47282 affects Gardener External DNS Management (< 0.23.6) and, when enabled, the shoot-dns-service extension (= 0.23.6; for the extension, upgrade the shoot-dns-service extension beyond v1.60.0. If exploitation details are provided in the connected documents they are not included here...

9.9CVSS9.5AI score0.00284EPSS
Exploits0References1
Rows per page
Query Builder