CVE-2026-39821 vulnerabilities

Vulnerabilities for packages: dgraph, x509-certificate-exporter, goreleaser, cloud-sql-proxy, falcoctl, sealed-secrets, slsa-verifier, vexctl, actions-runner-controller, cue, azurefile-csi, linkerd2, cloud-provider-azure, yunikorn-k8shim, melange, minio-operator, grafana-pyroscope, k3s,...

GHSA-W2Q5-6Q6X-X959 vulnerabilities

Vulnerabilities for packages: dgraph, x509-certificate-exporter, goreleaser, cloud-sql-proxy, falcoctl, sealed-secrets, slsa-verifier, vexctl, actions-runner-controller, cue, azurefile-csi, linkerd2, cloud-provider-azure, yunikorn-k8shim, melange, minio-operator, grafana-pyroscope, k3s,...

GHSA-W2Q5-6Q6X-X959 vulnerabilities

Vulnerabilities for packages: argo-cd, terraform-provider-pagerduty, wolfictl, amass, infinispan-operator, kserve-localmodelnode-agent, kubo, kube-arangodb-fips, opensearch-k8s-operator-fips, wave-fips, gitsign, k3d, kcp-0.29, kubernetes-csi-external-snapshotter-fips, gatekeeper-fips,...

CVE-2026-44903 vulnerabilities

Vulnerabilities for packages: mcp-grafana, opentelemetry-operator, mc, cloud-sql-proxy, fluent-bit-plugin-loki, telegraf, minio-object-browser, opentelemetry-collector-contrib, minio, prometheus, opentelemetry-collector, karma, tempo, amazon-cloudwatch-agent-operator, loki, datadog-agent, trillia...

CVE-2026-44903 vulnerabilities

Vulnerabilities for packages: minio, cloudzero-agent, beats-fips, elastic-agent, opentelemetry-collector-fips, mc-fips, telegraf, splunk-otel-collector-fips, opentelemetry-collector-contrib-fips, beats, ld-relay, cloudzero-agent-fips, minio-object-browser, trillian, datadog-agent-fips,...

GHSA-FW8G-CG8F-9J28 vulnerabilities

Vulnerabilities for packages: mcp-grafana, opentelemetry-operator, mc, cloud-sql-proxy, fluent-bit-plugin-loki, telegraf, minio-object-browser, opentelemetry-collector-contrib, minio, prometheus, opentelemetry-collector, karma, tempo, amazon-cloudwatch-agent-operator, loki, datadog-agent, trillia...

GHSA-FW8G-CG8F-9J28 vulnerabilities

Vulnerabilities for packages: minio, cloudzero-agent, beats-fips, elastic-agent, opentelemetry-collector-fips, mc-fips, telegraf, splunk-otel-collector-fips, opentelemetry-collector-contrib-fips, beats, ld-relay, cloudzero-agent-fips, minio-object-browser, trillian, datadog-agent-fips,...

CVE-2026-40179 vulnerabilities

Vulnerabilities for packages: mcp-grafana, mc, cloud-sql-proxy, telegraf, minio-object-browser, minio, minio-operator, prometheus, karma, tempo, loki, datadog-agent, trillian, splunk-otel-collector, node-problem-detector, jaeger, keda, certificate-transparency, prometheus-pushgateway, istio...

GHSA-VFFH-X6R8-XX99 vulnerabilities

Vulnerabilities for packages: mcp-grafana, mc, cloud-sql-proxy, telegraf, minio-object-browser, minio, minio-operator, prometheus, karma, tempo, loki, datadog-agent, trillian, splunk-otel-collector, node-problem-detector, jaeger, keda, certificate-transparency, prometheus-pushgateway, istio...

CVE-2026-32283 vulnerabilities

Vulnerabilities for packages: argo-cd, grpc-health-probe-fips, chart-testing-fips, pulumi-language-java, kubernetes-dashboard-web, terraform-provider-pagerduty, cert-manager-cmctl, apache-exporter, gitlab-kas-fips, nri-f5-fips, atlantis-fips, cluster-autoscaler-fips, amass, dataplaneapi-fips,...

GHSA-RV83-G57W-FR8J vulnerabilities

Vulnerabilities for packages: argo-cd, grpc-health-probe-fips, chart-testing-fips, pulumi-language-java, kubernetes-dashboard-web, terraform-provider-pagerduty, cert-manager-cmctl, apache-exporter, gitlab-kas-fips, nri-f5-fips, atlantis-fips, cluster-autoscaler-fips, amass, dataplaneapi-fips,...

GHSA-J4J7-VW47-RHFQ vulnerabilities

Vulnerabilities for packages: argo-cd, grpc-health-probe-fips, terraform-provider-pagerduty, pulumi-language-java, kubernetes-dashboard-web, cert-manager-cmctl, apache-exporter, gitlab-kas-fips, atlantis-fips, cluster-autoscaler-fips, dataplaneapi-fips, kubo, chaos-mesh-fips,...

CVE-2026-25679 vulnerabilities

Vulnerabilities for packages: argo-cd, grpc-health-probe-fips, chart-testing-fips, pulumi-language-java, kubernetes-dashboard-web, terraform-provider-pagerduty, cert-manager-cmctl, apache-exporter, gitlab-kas-fips, nri-f5-fips, atlantis-fips, cluster-autoscaler-fips, amass, dataplaneapi-fips,...

CVE-2026-27141 vulnerabilities

Vulnerabilities for packages: sops, pulumi-language-java, terraform-provider-acme, wolfictl, crossplane-provider-aws-lambda-fips, fleet-server-fips, crossplane-provider-aws-ec2, kubo, splunk-otel-collector-fips, src, contour-fips, crossplane-provider-aws-firehose,...

GHSA-8FJ7-8H3W-XWFM vulnerabilities

Vulnerabilities for packages: sops, pulumi-language-java, terraform-provider-acme, wolfictl, crossplane-provider-aws-lambda-fips, fleet-server-fips, crossplane-provider-aws-ec2, kubo, splunk-otel-collector-fips, src, contour-fips, crossplane-provider-aws-firehose,...

Fedora: Security Advisory (FEDORA-2025-5906618a59)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 42 : golang-github-googlecloudplatform-cloudsql-proxy (2025-582e97b7b4)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-582e97b7b4 advisory. Rebuilt for CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

GHSA-7C64-F9JR-V9H2 vulnerabilities

Vulnerabilities for packages: grpc-health-probe-fips, chart-testing-fips, glow, kubernetes-dashboard-web, gitlab-kas-fips, apache-exporter, gitleaks, cluster-autoscaler-fips, dataplaneapi-fips, infinispan-operator, steampipe, amazon-cloudwatch-agent-fips, k8s-device-plugin-fips,...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: grpc-health-probe-fips, chart-testing-fips, glow, kubernetes-dashboard-web, gitlab-kas-fips, apache-exporter, gitleaks, cluster-autoscaler-fips, dataplaneapi-fips, infinispan-operator, steampipe, amazon-cloudwatch-agent-fips, k8s-device-plugin-fips,...

CVE-2025-22871 vulnerabilities

Vulnerabilities for packages: hello-world-golang, q, tailscale, mage, slsa-verifier, kyverno-notation-aws, local-static-provisioner, minio-operator, modelmesh-runtime-adapter, external-dns, rancher-webhook, rancher-loglevel, go-licenses, temporal-server, tflint, ip-masq-agent, tempo,...