GHSA-XHF5-7WJV-PQXP vulnerabilities

Vulnerabilities for packages: trivy, kgateway, newrelic-infrastructure-agent, helm-operator-fips, spegel-fips, grype, chaos-mesh-fips, k9s, grype-fips, skaffold-fips, helm-operator, kube-arangodb, scorecard, kots, trivy-fips, newrelic-infrastructure-agent-fips, docker-compose-fips,...

CVE-2026-53488 vulnerabilities

Vulnerabilities for packages: trivy, kgateway, newrelic-infrastructure-agent, helm-operator-fips, spegel-fips, grype, chaos-mesh-fips, k9s, grype-fips, skaffold-fips, helm-operator, kube-arangodb, scorecard, kots, trivy-fips, newrelic-infrastructure-agent-fips, docker-compose-fips,...

Tigera Calico 安全漏洞

Tigera Calico is an open-source network security solution developed by the American company Tigera, designed for container, virtual machine, and host workload scenarios. There is a security vulnerability in Tigera Calico. This vulnerability stems from the install-cni init container recording CNI...

Tigera Calico 安全漏洞

Tigera Calico is an open-source network security solution developed by the American company Tigera, designed for container, virtual machine, and host workloads. Tigera Calico has a security vulnerability, which stems from the Azure IPAM plugin recording unencrypted configuration mappings in logs...

Tigera Calico 安全漏洞

Tigera Calico is an open-source network security solution developed by the American company Tigera, designed for container, virtual machine, and host workload scenarios. Tigera Calico has a security vulnerability that arises from printing the complete connection configuration structure when calle...

GHSA-FQW6-GF59-QR4W vulnerabilities

Vulnerabilities for packages: containerd, docker-cli-buildx, helm, docker-compose, headlamp, kots, k8ssandra-client, newrelic-infrastructure-agent, spegel, teleport, kargo, kaniko, tw, wolfictl, xeol, gatekeeper, consul-k8s, helm-operator, zarf, trivy-operator, trivy, dagger, envoy-gateway,...

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: containerd, docker-cli-buildx, helm, docker-compose, headlamp, kots, k8ssandra-client, newrelic-infrastructure-agent, spegel, teleport, kargo, kaniko, tw, wolfictl, xeol, gatekeeper, consul-k8s, helm-operator, zarf, trivy-operator, trivy, dagger, envoy-gateway,...

CVE-2026-25679 vulnerabilities

Vulnerabilities for packages: fulcio-fips, nri-redis, opentofu-fips, git-sync, php-fpmexporter, rabbitmq-default-user-credential-updater, gatekeeper-fips, vertical-pod-autoscaler-fips, kubelet-csr-approver-fips, opentelemetry-collector, newrelic-infrastructure-agent, yace, agentbeat,...

CVE-2025-61732 vulnerabilities

Vulnerabilities for packages: helm, nfs-subdir-external-provisioner, capslock, secrets-store-csi-driver-provider-gcp, secrets-store-csi-driver, glab, tetragon, liquibase-package-manager, cluster-api-provider-vsphere, logstash-exporter, gops, pvc-autoresizer, chartmuseum, kube-metrics-adapter,...

CVE-2025-68121 vulnerabilities

Vulnerabilities for packages: helm, nfs-subdir-external-provisioner, secrets-store-csi-driver-provider-gcp, secrets-store-csi-driver, glab, tetragon, liquibase-package-manager, cluster-api-provider-vsphere, logstash-exporter, pvc-autoresizer, chartmuseum, kube-metrics-adapter,...

CLEANSTART-2026-RB28539 Within HostnameError

Security vulnerability affects the tigera-operator package. Within HostnameError...

CLEANSTART-2025-YJ25356 Security fixes for CVE-2025-61729 applied in versions: 1.40.2-r0

Security vulnerability affects the tigera-operator package. This issue is resolved in later releases. See references for CVE details...

GHSA-5MH9-3JWC-RP59 vulnerabilities

Vulnerabilities for packages: opentofu-fips, php-fpmexporter, vertical-pod-autoscaler-fips, gatekeeper-fips, opentelemetry-collector, newrelic-infrastructure-agent, crossplane-fips, sonobuoy-fips, ceph-csi-operator-fips, flux-helm-controller-fips, cilium-fips, tetragon-fips, telegraf,...

GHSA-J5PM-7495-QMR3 vulnerabilities

Vulnerabilities for packages: fulcio-fips, nri-redis, opentofu-fips, gatekeeper-fips, kubelet-csr-approver-fips, opentelemetry-collector, licenseclassifier, yace, kubernetes-dashboard-metrics-scraper, kubernetes, nri-memcached, sonobuoy-fips, flux-helm-controller-fips, cilium-fips, http-echo,...

GHSA-QXP5-GWG8-XV66 vulnerabilities

Vulnerabilities for packages: fulcio-fips, opentofu-fips, vertical-pod-autoscaler-fips, gatekeeper-fips, opentelemetry-collector, newrelic-infrastructure-agent, kubernetes-dashboard-metrics-scraper, crossplane-fips, kubernetes, tfsec, flux-helm-controller-fips, cilium-fips,...

CVE-2025-25294 vulnerabilities

Vulnerabilities for packages: tigera-operator...

CVE-2025-25294 vulnerabilities

Vulnerabilities for packages: tigera-operator, tigera-operator-fips...

GHSA-MF24-CHXH-HMVJ vulnerabilities

Vulnerabilities for packages: tigera-operator...

GHSA-MF24-CHXH-HMVJ vulnerabilities

Vulnerabilities for packages: tigera-operator, tigera-operator-fips...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: helm, nfs-subdir-external-provisioner, capslock, dynamic-localpv-provisioner, secrets-store-csi-driver-provider-gcp, kubernetes-dashboard-metrics-scraper, nri-mysql, kubebuilder, gomplate, aws-flb-firehose, logstash-exporter, datadog-agent, gops, caddy, controller-ge...