36 matches found
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: atlantis, flux-image-automation-controller, external-dns, pulumi-language-dotnet, flux-operator, witness, podman, kine, tekton-chains, flux-source-controller, zot, apko, sops, kaf, k8sgpt, cert-manager, loki, step, trivy-operator, kargo,...
GHSA-CG87-VWWH-XVGJ vulnerabilities
Vulnerabilities for packages: gitea, fq, caddy, kots, glab, grafana-pyroscope, hydra, opentelemetry-collector, prometheus, snyk-cli, kine, zot, terraform-provider-acme, crossplane-provider-aws-elasticache, istio, step-issuer, crossplane-provider-azure-authorization, karpenter, vitess, cilium,...
GHSA-WRH2-89VG-4J9G vulnerabilities
Vulnerabilities for packages: gitea, fq, caddy, kots, glab, grafana-pyroscope, hydra, opentelemetry-collector, prometheus, snyk-cli, kine, zot, terraform-provider-acme, crossplane-provider-aws-elasticache, istio, step-issuer, crossplane-provider-azure-authorization, karpenter, vitess, cilium,...
GHSA-W9P8-PVXH-RXPJ vulnerabilities
Vulnerabilities for packages: gitea, fq, caddy, kots, glab, grafana-pyroscope, hydra, opentelemetry-collector, prometheus, snyk-cli, kine, zot, terraform-provider-acme, crossplane-provider-aws-elasticache, istio, step-issuer, crossplane-provider-azure-authorization, karpenter, vitess, cilium,...
CVE-2026-25681 vulnerabilities
Vulnerabilities for packages: gitea, fq, caddy, kots, glab, grafana-pyroscope, hydra, opentelemetry-collector, prometheus, snyk-cli, kine, zot, terraform-provider-acme, crossplane-provider-aws-elasticache, istio, step-issuer, crossplane-provider-azure-authorization, karpenter, vitess, cilium,...
GHSA-M9X8-M34X-FJ9Q vulnerabilities
Vulnerabilities for packages: gitea, fq, caddy, kots, glab, grafana-pyroscope, hydra, opentelemetry-collector, prometheus, snyk-cli, kine, zot, terraform-provider-acme, crossplane-provider-aws-elasticache, istio, step-issuer, crossplane-provider-azure-authorization, karpenter, vitess, cilium,...
CVE-2026-27136 vulnerabilities
Vulnerabilities for packages: gitea, fq, caddy, kots, glab, grafana-pyroscope, hydra, opentelemetry-collector, prometheus, snyk-cli, kine, zot, terraform-provider-acme, crossplane-provider-aws-elasticache, istio, step-issuer, crossplane-provider-azure-authorization, karpenter, vitess, cilium,...
CVE-2026-25680 vulnerabilities
Vulnerabilities for packages: gitea, fq, caddy, kots, glab, grafana-pyroscope, hydra, opentelemetry-collector, prometheus, snyk-cli, kine, zot, terraform-provider-acme, crossplane-provider-aws-elasticache, istio, step-issuer, crossplane-provider-azure-authorization, karpenter, vitess, cilium,...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: gitea, fq, caddy, kots, glab, grafana-pyroscope, hydra, opentelemetry-collector, prometheus, snyk-cli, kine, zot, terraform-provider-acme, crossplane-provider-aws-elasticache, istio, step-issuer, crossplane-provider-azure-authorization, karpenter, vitess, cilium,...
CVE-2026-41889 vulnerabilities
Vulnerabilities for packages: cerbos, sftpgo-plugin-eventsearch, kots, gitlab-kas-fips, temporal-server, bento-fips, envoy-gateway-fips, kubeflow-pipelines, hydra-fips, pgtimetable, commercial-chainloop-backend, steampipe, gitlab-cng-fips, commercial-grafana, step-fips, rke2-cloud-provider-fips,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: atlantis, flux-image-automation-controller, external-dns, helm-mapkubeapis, litestream, kubernetes-csi-node-driver-registrar, cortex, docker-machine-driver-linode, dbmate, witness, chartmuseum, vault-env, mc, kine, zot, flux-source-controller, cert-manager-csi-driver...
CVE-2026-32289 vulnerabilities
Vulnerabilities for packages: atlantis, flux-image-automation-controller, external-dns, helm-mapkubeapis, litestream, kubernetes-csi-node-driver-registrar, cortex, docker-machine-driver-linode, dbmate, witness, chartmuseum, vault-env, mc, kine, zot, flux-source-controller, cert-manager-csi-driver...
CLEANSTART-2026-CV29689 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-25793, CVE-2026-30836 applied in versions: 0.10.2-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-CE02533 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.1-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-UZ79996 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729, CVE-2025-62820, CVE-2026-30836, CVE-2026-33186, ghsa-p77j-4mvh-x3m3, ghsa-q4r8-xm5f-56gw applied in versions: 0.10.0-r0, 0.9.10-r0, 0.9.9-r0, 0.9.9-r1
Multiple security vulnerabilities affect the step-issuer package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-30836 vulnerabilities
Vulnerabilities for packages: step-issuer-fips, frankenphp-8.4, frankenphp-8.3, step-ca-fips, frankenphp-8.5, frankenphp-8.2, caddy-fips, caddy...
GHSA-Q4R8-XM5F-56GW vulnerabilities
Vulnerabilities for packages: step-issuer-fips, frankenphp-8.4, frankenphp-8.3, step-ca-fips, frankenphp-8.5, frankenphp-8.2, caddy-fips, caddy...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: ollama, terraform-provider-aws, bento-fips, crossplane-provider-aws-backup, kubo, descheduler, crossplane-provider-aws-sns, crossplane-provider-aws-rds, omni-fips, trivy-operator-fips, crossplane-provider-aws-cognitoidp-fips, wolfictl, amazon-ssm-agent,...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: ollama, terraform-provider-aws, bento-fips, crossplane-provider-aws-backup, kubo, descheduler, crossplane-provider-aws-sns, crossplane-provider-aws-rds, omni-fips, trivy-operator-fips, crossplane-provider-aws-cognitoidp-fips, wolfictl, amazon-ssm-agent,...
GHSA-FW7P-63QQ-7HPR vulnerabilities
Vulnerabilities for packages: gitea, caddy, envoy-gateway, mariadb-operator, trufflehog, spicedb, amass, sftpgo, kots, age, dbmate, witness, kubeflow-pipelines, hydra, dex, kine, kyverno, apko, nuclei, keda, trillian, seaweedfs, temporal-server, grafana-alloy, sops, juicefs, argo-workflows,...