43 matches found
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: atlantis, nri-f5, aws-eks-pod-identity-agent, cortex, nodetaint, dbmate, witness, chartmuseum, kubernetes-ingress-defaultbackend, vt-cli, podman, vertical-pod-autoscaler, apko, pgpool2exporter, boring-registry, helm-set-status, cloudnative-pg, hugo, k8s-device-plugin...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy-fips, logstash-exporter, stern, nodetaint, onepassword-operator, yunikorn-web, cert-manager-csi-driver-fips, cluster-api-provider-vsphere, gitlab-kas-fips, nri-elasticsearch-fips, maru, percona-server-mongodb-operator,...
CVE-2026-34986 vulnerabilities
Vulnerabilities for packages: kaniko, rekor, gitlab-kas-fips, percona-server-mongodb-operator, tkn, envoy-gateway-fips, kubeflow-pipelines, oauth2-proxy, commercial-chainloop-cli, packer-fips, spire-controller-manager, commercial-grafana, gcsfuse, crossplane, seaweedfs-operator-fips,...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: atlantis, aws-eks-pod-identity-agent, pulumi-language-dotnet, cortex, chartmuseum, kubernetes-ingress-defaultbackend, vt-cli, podman, vertical-pod-autoscaler, pgpool2exporter, boring-registry, yq, sops, k8s-device-plugin, mkcert, kustomize, k8sgpt, loki,...
GHSA-J3GX-2473-5FP8 vulnerabilities
Vulnerabilities for packages: atlantis, aws-eks-pod-identity-agent, pulumi-language-dotnet, cortex, chartmuseum, kubernetes-ingress-defaultbackend, vt-cli, podman, vertical-pod-autoscaler, pgpool2exporter, boring-registry, yq, sops, k8s-device-plugin, mkcert, kustomize, k8sgpt, loki,...
GHSA-RV83-G57W-FR8J vulnerabilities
Vulnerabilities for packages: atlantis, aws-eks-pod-identity-agent, pulumi-language-dotnet, cortex, chartmuseum, kubernetes-ingress-defaultbackend, vt-cli, podman, vertical-pod-autoscaler, pgpool2exporter, boring-registry, yq, sops, k8s-device-plugin, mkcert, kustomize, k8sgpt, loki,...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy-fips, cluster-api-gcp-controller, kaniko, logstash-exporter, onepassword-operator, stern, cluster-api-provider-vsphere, yunikorn-web, gitlab-kas-fips, cfssl-fips, nri-elasticsearch-fips, maru, percona-server-mongodb-operator,...
EUVD-2021-16005
Malware in sbrugna...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy-fips, trust-manager, cluster-api-gcp-controller, kaniko, logstash-exporter, kubeflow-katib, rekor, cert-manager-csi-driver-fips, yunikorn-web, gitlab-kas-fips, cfssl-fips, kaf, kubernetes-dashboard-api, jaeger-operator-fips, aws-flb-cloudwatch,...
CVE-2021-29370
A UXSS was discovered in the Thanos-Soft Cheetah Browser in Android 1.2.0 due to the inadequate filter of the intent scheme. This resulted in Cross-site scripting on the cheetah browser in any website...
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: nri-couchbase, crossplane-provider-azure, fq, go-bindata, nri-f5, flux-image-automation-controller, external-dns, kubernetes-dns-node-cache, nri-elasticsearch, nri-rabbitmq, amass, kube-logging-operator, velero, cortex, nodetaint, q, pombump, helm-operator,...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: nri-couchbase, crossplane-provider-azure, fq, go-bindata, nri-f5, flux-image-automation-controller, external-dns, kubernetes-dns-node-cache, nri-elasticsearch, nri-rabbitmq, amass, kube-logging-operator, velero, cortex, nodetaint, q, pombump, helm-operator,...
Moderate: Red Hat Security Advisory: Cluster Observability Operator 0.4.1
The Cluster Observability Operator is a Kubernetes operator which enables the management of Monitoring/Alerting stacks through Kubernetes CRDs. Cluster Observability Operator Security Fixes: coo-prometheus-container: go-retryablehttp: url might write sensitive information to log file coo-0...
CVE-2024-35255 vulnerabilities
Vulnerabilities for packages: sigstore-scaffolding, airflow, flyte, external-dns, rook, kubescape, up, cosign, velero, cortex, policy-controller, hugo-extended, druid, grafana-agent-operator, trino, falcoctl, datadog-agent, opentelemetry-collector, tekton-chains, zot, flux-source-controller, wal-...
CVE-2024-24788 vulnerabilities
Vulnerabilities for packages: harbor-scanner-trivy-fips, trust-manager, logstash-exporter, rekor, stern, docker-credential-acr-env, kaf, secrets-store-csi-driver-provider-aws, oauth2-proxy, cue-fips, libnvidia-container, prometheus-alertmanager, sonobuoy, kubernetes, crossplane,...
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: atlantis, crossplane-provider-azure, flux-image-automation-controller, external-dns, kubernetes-dns-node-cache, spicedb, pulumi-language-dotnet, amass, kube-logging-operator, velero, cortex, nodetaint, hugo-extended, helm-operator, chartmuseum, falco,...
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: nri-couchbase, crossplane-provider-azure, fq, go-bindata, nri-f5, flux-image-automation-controller, external-dns, kubernetes-dns-node-cache, nri-elasticsearch, nri-rabbitmq, amass, kube-logging-operator, velero, cortex, nodetaint, q, pombump, helm-operator,...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: trust-manager, logstash-exporter, kaniko, nodetaint, kubeflow-katib, rekor, kaf, tkn, secrets-store-csi-driver-provider-aws, kubeflow-pipelines, oauth2-proxy, prometheus-node-exporter, prometheus-alertmanager, crossplane-provider-aws-cloudwatchlogs, sonobuoy,...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: falco, buildkitd, aactl, slsa-verifier, spark-operator, src, up, kubescape, dgraph, k3d, kubeflow, terraform-provider-sendgrid, scorecard, cortex, kubevela, prometheus-blackbox-exporter...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: up, kubescape, bank-vaults-fips, kubernetes-csi-livenessprobe, prometheus-adapter-fips, buildkitd, spark-operator, aactl, kiam, terraform-provider-sendgrid-fips, cluster-autoscaler-fips, cortex, conftest-fips, falco, dgraph, slsa-verifier, src,...