36 matches found
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: chisel, tkn, eksctl, snyk-cli, neuvector-sigstore-interface, argo-cd, docker-cli-buildx, grype, kubernetes-dashboard, pulumi, falcoctl, chezmoi, apko, wolfictl, knative-serving, flux-operator, flux-source-controller, terragrunt, step, cilium, opentelemetry-collector,...
GHSA-WRH2-89VG-4J9G vulnerabilities
Vulnerabilities for packages: terraform-provider-acme, crossplane-provider-azure-authorization, ingress-nginx-controller, k3s, snyk-cli, glab, zot, argo-cd, kine, vale, kubernetes-dashboard, step-issuer, karpenter, kyverno, helm, caddy, fq, crossplane-provider-aws-elasticache, minio,...
GHSA-W9P8-PVXH-RXPJ vulnerabilities
Vulnerabilities for packages: terraform-provider-acme, crossplane-provider-azure-authorization, ingress-nginx-controller, k3s, snyk-cli, glab, zot, argo-cd, kine, vale, kubernetes-dashboard, step-issuer, karpenter, kyverno, helm, caddy, fq, crossplane-provider-aws-elasticache, minio,...
GHSA-M9X8-M34X-FJ9Q vulnerabilities
Vulnerabilities for packages: terraform-provider-acme, crossplane-provider-azure-authorization, ingress-nginx-controller, k3s, snyk-cli, glab, zot, argo-cd, kine, vale, kubernetes-dashboard, step-issuer, karpenter, kyverno, helm, caddy, fq, crossplane-provider-aws-elasticache, minio,...
GHSA-CG87-VWWH-XVGJ vulnerabilities
Vulnerabilities for packages: terraform-provider-acme, crossplane-provider-azure-authorization, ingress-nginx-controller, k3s, snyk-cli, glab, zot, argo-cd, kine, vale, kubernetes-dashboard, step-issuer, karpenter, kyverno, helm, caddy, fq, crossplane-provider-aws-elasticache, minio,...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: terraform-provider-acme, crossplane-provider-azure-authorization, ingress-nginx-controller, k3s, snyk-cli, glab, zot, argo-cd, kine, vale, kubernetes-dashboard, step-issuer, karpenter, kyverno, helm, caddy, fq, crossplane-provider-aws-elasticache, minio,...
CVE-2026-25680 vulnerabilities
Vulnerabilities for packages: terraform-provider-acme, crossplane-provider-azure-authorization, ingress-nginx-controller, k3s, snyk-cli, glab, zot, argo-cd, kine, vale, kubernetes-dashboard, step-issuer, karpenter, kyverno, helm, caddy, fq, crossplane-provider-aws-elasticache, minio,...
CVE-2026-27136 vulnerabilities
Vulnerabilities for packages: terraform-provider-acme, crossplane-provider-azure-authorization, ingress-nginx-controller, k3s, snyk-cli, glab, zot, argo-cd, kine, vale, kubernetes-dashboard, step-issuer, karpenter, kyverno, helm, caddy, fq, crossplane-provider-aws-elasticache, minio,...
CVE-2026-25681 vulnerabilities
Vulnerabilities for packages: terraform-provider-acme, crossplane-provider-azure-authorization, ingress-nginx-controller, k3s, snyk-cli, glab, zot, argo-cd, kine, vale, kubernetes-dashboard, step-issuer, karpenter, kyverno, helm, caddy, fq, crossplane-provider-aws-elasticache, minio,...
CVE-2026-41889 vulnerabilities
Vulnerabilities for packages: sftpgo-plugin-eventstore, cloudprober-fips, migrate, jitsucom-bulker, wal-g, timescaledb-parallel-copy, commercial-grafana, seaweedfs-fips, gitaly-fips, step-ca-fips, openbao-fips, harbor, caddy-fips, openfga-fips, openfga, goose-fips, step-ca, dapr, cloudnative-pg,...
CVE-2026-32289 vulnerabilities
Vulnerabilities for packages: tkn, spiffe-helper, falco-no-driver, newrelic-fluent-bit-output, redpanda, kserve-modelmesh-serving, eksctl, etcd, tailscale, kubernetes-csi-external-health-monitor, tofu-controller, snyk-cli, argo-cd, descheduler, dkron, docker-cli-buildx, redka, bom,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: tkn, spiffe-helper, falco-no-driver, newrelic-fluent-bit-output, redpanda, kserve-modelmesh-serving, eksctl, etcd, tailscale, kubernetes-csi-external-health-monitor, tofu-controller, snyk-cli, argo-cd, descheduler, dkron, docker-cli-buildx, redka, bom,...
CLEANSTART-2026-CV29689 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-25793, CVE-2026-30836 applied in versions: 0.10.2-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-CE02533 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.1-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-UZ79996 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.0-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-Q4R8-XM5F-56GW vulnerabilities
Vulnerabilities for packages: frankenphp-8.5, frankenphp-8.2, frankenphp-8.4, step-ca-fips, step-issuer-fips, frankenphp-8.3, caddy, caddy-fips...
CVE-2026-30836 vulnerabilities
Vulnerabilities for packages: frankenphp-8.5, frankenphp-8.2, frankenphp-8.4, step-ca-fips, step-issuer-fips, frankenphp-8.3, caddy, caddy-fips...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-ecs-fips, apache-beam-python-3.13-sdk, crossplane-provider-aws-ecr, cloudbeat, kyverno-policy-reporter, crossplane-provider-aws-cognitoidp, contour, apm-server-fips, crossplane-provider-aws-efs-fips, crossplane-provider-aws-memorydb,...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-ecs-fips, apache-beam-python-3.13-sdk, crossplane-provider-aws-ecr, cloudbeat, kyverno-policy-reporter, crossplane-provider-aws-cognitoidp, contour, apm-server-fips, crossplane-provider-aws-efs-fips, crossplane-provider-aws-memorydb,...
GHSA-FW7P-63QQ-7HPR vulnerabilities
Vulnerabilities for packages: tkn, keda, kyverno-policy-reporter, mattermost, timestamp-authority, dbmate, spicedb, dgraph, sops, fulcio, croc, tailscale, k3s, openfga, kine, sqlexporter, splunk-otel-collector, step-ca, trufflehog, crossplane-provider-sql, step-issuer, dex, kyverno, nuclei, amass...