1989 matches found
GHSA-45GG-VH54-H5M9 vulnerabilities
Vulnerabilities for packages: kots, opentelemetry-collector, gitea, nemo, flux-image-automation-controller, spire-server, helm, knative-serving-fips, kubescape-server-fips, cloudbeat, cilium, skaffold, kubescape, cilium-cli, k9s-fips, argocd-image-updater-fips, kubernetes, coder,...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: cloud-provider-aws, flux, cert-manager, kots, mattermost, spire-server, chisel, k3s, kaf, minio, zot, fscrypt, kyverno, prometheus, snyk-cli, aactl, loki, kubernetes-dashboard, kubernetes, skaffold, zarf, external-dns, helm, telegraf, prometheus-operator, cilium-cli,...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: teleport, nuclei, dagger, kaf, prometheus, neuvector-sigstore-interface, wolfictl, go-discover, crossplane-provider-azure-managedidentity, zarf, kargo, prometheus-operator, step-kms-plugin, telegraf, terragrunt, pulumi-language-java, crossplane-provider-family-azure,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: teleport, podman, cloud-provider-aws, flux, cert-manager, kots, mattermost, spire-server, k3s, kaf, minio, zot, fscrypt, kyverno, prometheus, snyk-cli, aactl, loki, kubernetes-dashboard, docker-cli-buildx, kubernetes, external-dns, helm, telegraf, prometheus-operator...
ROOT-APP-NPM-SNYK-JS-AXIOS-9403194 SNYK-JS-AXIOS-9403194 in @rootio/axios - Patched by Root
Root has patched SNYK-JS-AXIOS-9403194 in the @rootio/axios package for Root:npm. Multiple fixed versions available...
ROOT-APP-NPM-SNYK-JS-AXIOS-6144788 SNYK-JS-AXIOS-6144788 in @rootio/axios - Patched by Root
Root has patched SNYK-JS-AXIOS-6144788 in the @rootio/axios package for Root:npm. Multiple fixed versions available...
ROOT-APP-NPM-SNYK-JS-AXIOS-6124857 SNYK-JS-AXIOS-6124857 in @rootio/axios - Patched by Root
Root has patched SNYK-JS-AXIOS-6124857 in the @rootio/axios package for Root:npm. Multiple fixed versions available...
@firestormapps/utils (=1.4.0), @jgtb/shared-core-fns (=1.0.4) +5 more potentially affected by unknown CVE via creditcard.js (=3.0.59)
creditcard.js NPM version =3.0.59 is affected by a known vulnerability. The following packages have a transitive dependency on creditcard.js and may be impacted: - @firestormapps/utils =1.4.0 - @jgtb/shared-core-fns =1.0.4 - mollie-shopwarepwa =1.0.0, =0.0.5, =0.0.1, =0.0.2 - shared-core-fns =1.0...
bioimageio-engine (>=0.1.0 <=0.1.3), cmd2func (>=0.1.0 <=0.2.1) +12 more potentially affected by unknown CVE via funcdesc (=0.2.1)
funcdesc PYPI version =0.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on funcdesc and may be impacted: - bioimageio-engine =0.1.0, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.3.0, =0.1.1, =0.5.0, =0.1.1, =0.1.2 Source cves: unknown C...
pantheon-cli (>=0.1.1 <=0.1.4rc1), uprobe (>=0.1.1 <=0.1.2) potentially affected by unknown CVE via pantheon-agents (=0.6.0)
pantheon-agents PYPI version =0.6.0 is affected by a known vulnerability. The following packages have a transitive dependency on pantheon-agents and may be impacted: - pantheon-cli =0.1.1, =0.1.1, =0.1.2 Source cves: unknown CVE Source advisory: SNYK:PYTHON-PANTHEONAGENTS-17220146...
cellist (>=1.0.0 <=1.1.1), feast-py (>=0.1.7 <=1.0.1) +1 more potentially affected by unknown CVE via spateo-release (>=1.0.2 <=1.1.1)
spateo-release PYPI version =1.0.2, =1.0.0, =0.1.7, =1.0.1 - feast-sim =0.1.7 Source cves: unknown CVE Source advisory: SNYK:PYTHON-SPATEORELEASE-17220148...
0xpay-cc-sdk (>=0.0.8 <=0.1.0), 0xtrails (>=0.0.0-20251106131028 <=0.16.0) +7399 more potentially affected by CVE-2026-44496 via axios (>=1.0.0 <=1.15.2)
axios NPM version =1.0.0, =0.0.8, =0.0.0-20251106131028, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =1.0.0, =0.0.2-beta.0, =8.0.5, =6.1.0, =0.0.0-canary-847463221a9a1bee28641d8c0ecfaca98ee142f6, =0.0.1-alpha.3, =0.1.6-alpha.11, =0.1.6-alpha.12 and more Source cves: CVE-2026-44496 Source advisory:...
1zlab-emp-ide (=0.0.3), 1zlab-homepage (>=0.0.2 <=0.0.3) +11108 more potentially affected by CVE-2026-35193 via django (>=6.0.0 <=6.0.5)
django PYPI version =6.0.0, =0.0.2, =2.2.0, =0.1.0, =0.1.0.1, =0.1.1, =0.2.0, =0.0.4a0, =0.0.7, =0.1.10 and more Source cves: CVE-2026-35193 Source advisory: SNYK:PYTHON-DJANGO-17151780...
11x-wagtail-blog (>=0.0.0 <=0.2.0), aa-altcorp (>=0.1.2b0 <=1.1.1) +1647 more potentially affected by CVE-2026-8404 via django (>=5.0.0 <=5.2.14)
django PYPI version =5.0.0, =0.0.0, =0.1.2b0, =0.0.1a1, =0.1.1, =3.1.0b1, =1.0.3, =0.0.1a2, =0.1.0, =0.2.0, =1.0.0, =1.1.0b3, =0.1.0b1, =0.11.1 and more Source cves: CVE-2026-8404 Source advisory: SNYK:PYTHON-DJANGO-17151726...
@accounter/client (>=0.0.3 <=0.0.11-alpha-20260404002702-9340365def1af08a5cdbbf734a87d1d4839bdaff), @asamanvay/auth-service (>=0.0.2 <=0.0.4) +151 more potentially affected by CVE-2026-34077 via react-router (>=7.0.0 <=7.14.0-pre.0)
react-router NPM version =7.0.0, =0.0.3, =0.0.2, =3.5.2, =1.1.0, =1.0.1-MON-198808-web-js-deps-batch-1.0, =0.0.1, =3.4.9, =0.1.9, =0.3.1, =7.13.1-depup.0, =7.13.2-depup.0 and more Source cves: CVE-2026-34077 Source advisory: SNYK:JS-REACTROUTER-17138883...
@activepieces/piece-vapi (>=0.0.1 <=0.0.2), @keyman500/voice-ai-sdk (>=0.1.0 <=1.1.0) +2 more potentially affected by unknown CVE via @vapi-ai/server-sdk (>=0.10.2 <=0.11.0)
@vapi-ai/server-sdk NPM version =0.10.2, =0.0.1, =0.1.0, =1.0.0, =1.1.0 Source cves: unknown CVE Source advisory: SNYK:JS-VAPIAISERVERSDK-17146457...
@agentic-dev-library/control (=1.2.0), @agentic-dev-library/triage (>=1.0.2 <=1.1.0) +38 more potentially affected by unknown CVE via ai-sdk-ollama (>=3.0.0 <=3.8.4)
ai-sdk-ollama NPM version =3.0.0, =1.0.2, =0.1.0, =0.1.1, =0.1.0, =1.3.0, =0.1.1, =0.2.0, =0.1.0, =0.1.0, =0.1.0, =0.4.3 and more Source cves: unknown CVE Source advisory: SNYK:JS-AISDKOLLAMA-17146454...
autotel-adapters (>=0.1.1 <=0.2.9), autotel-aws (>=0.4.0 <=0.12.9) +8 more potentially affected by unknown CVE via autotel (>=2.10.0 <=2.26.3)
autotel NPM version =2.10.0, =0.1.1, =0.4.0, =2.0.1, =0.0.2, =0.1.1, =0.2.0, =0.4.0, =0.1.1, =1.4.0, =0.2.0, =0.4.9 Source cves: unknown CVE Source advisory: SNYK:JS-AUTOTEL-17146458...
autotel-cli (>=0.8.10 <=0.8.11) potentially affected by unknown CVE via autotel-mcp (>=0.1.10 <=0.1.11)
autotel-mcp NPM version =0.1.10, =0.8.10, =0.8.11 Source cves: unknown CVE Source advisory: SNYK:JS-AUTOTELMCP-17146470...
@byside/llm (>=0.1.0 <=0.1.1), agentic-control (=1.1.0) potentially affected by unknown CVE via ai-sdk-ollama (=1.1.0)
ai-sdk-ollama NPM version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on ai-sdk-ollama and may be impacted: - @byside/llm =0.1.0, =0.1.1 - agentic-control =1.1.0 Source cves: unknown CVE Source advisory: SNYK:JS-AISDKOLLAMA-17146454...