11 matches found
GHSA-FV83-X2XW-2J55 vulnerabilities
Vulnerabilities for packages: go, flux-source-controller, spire-server, victoriametrics-cluster, hubble, github-mcp-server, nfs-subdir-external-provisioner, malcontent, rabbitmq-messaging-topology-operator, aws-network-policy-agent, flux-helm-controller, mountpoint-s3-csi-driver, tailscale,...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: harbor-cli, kyverno, hubble, rancher-loglevel, docker-credential-gcr, lazydocker, whereabouts, grafana-pyroscope, filebrowser, scorecard, certificate-transparency, cilium, kubewatch, consul-k8s, kuberlr, mariadb-operator, kubernetes-csi-external-resizer,...
CLEANSTART-2026-NV36169 Security fixes for CVE-2025-61732, CVE-2025-66564, CVE-2025-68121, CVE-2026-24686, CVE-2026-25679, CVE-2026-26958, CVE-2026-27139, CVE-2026-27142, ghsa-fcv2-xgw5-pqxf applied in versions: 0.7.29-r1, 0.7.29-r2
Multiple security vulnerabilities affect the sigstore-scaffolding package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: cloudprober, cluster-api, crossplane-provider-aws-ec2, gitlab-kas, kserve, gitaly, minio-object-browser, kyverno, yunikorn-k8shim, grafana-pyroscope, sftpgo, neuvector-sigstore-interface, tetragon, crossplane-provider-aws-iam, apisix-ingress-controller, gitlab-runner...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-ec2, kyverno, rancher-loglevel, whereabouts, grafana-pyroscope, opentelemetry-collector-contrib, nri-kubernetes, cilium, kubewatch, consul-k8s, kuberlr, mariadb-operator, kubernetes-csi-external-resizer, secrets-store-csi-driver-provider-aws,...
GHSA-J3GX-2473-5FP8 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-ec2, kyverno, rancher-loglevel, whereabouts, grafana-pyroscope, opentelemetry-collector-contrib, nri-kubernetes, cilium, kubewatch, consul-k8s, kuberlr, mariadb-operator, kubernetes-csi-external-resizer, secrets-store-csi-driver-provider-aws,...
CVE-2026-27142 vulnerabilities
Vulnerabilities for packages: cloudprober, cluster-api, crossplane-provider-aws-ec2, gitlab-kas, kserve, gitaly, minio-object-browser, kyverno, yunikorn-k8shim, grafana-pyroscope, sftpgo, neuvector-sigstore-interface, tetragon, crossplane-provider-aws-iam, apisix-ingress-controller, gitlab-runner...
CVE-2024-35255 vulnerabilities
Vulnerabilities for packages: flux-source-controller, falcoctl, rclone, spire-server, sigstore-scaffolding, flux-kustomize-controller, argo-workflows, buildkitd, cosign, cortex, datadog-agent, hugo, step, timestamp-authority, velero, terragrunt, boring-registry, sops, tkn, kubescape, chezmoi,...
CVE-2024-28180 vulnerabilities
Vulnerabilities for packages: ko, flux-source-controller, caddy, falcoctl, gitsign, nerdctl, sigstore-scaffolding, skopeo, spire-server, flux-kustomize-controller, vexctl, wolfictl, argo-workflows, cosign, timestamp-authority, step, sops, tkn, kubescape, rabbitmq-messaging-topology-operator,...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: spicedb, secrets-store-csi-driver, osv-scanner, up, smarter-device-manager-fips, nri-kubernetes, nodetaint, docker-compose, kubernetes-dashboard, kubernetes-dashboard-metrics-scraper-fips, logstash-exporter-fips, ferretdb, prometheus-blackbox-exporter,...
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: nri-prometheus, scorecard, certificate-transparency, haproxy-ingress, metacontroller, gomplate, kubewatch, frp, grype, weaviate, metrics-server, hey, kubevela, rqlite, spark-operator, cue, k3d, flux-source-controller, terraform, flux-kustomize-controller, buildkitd,...