GHSA-XHF5-7WJV-PQXP vulnerabilities

Vulnerabilities for packages: kubescape-operator, wolfictl, cloudbeat, buildkitd-fips, ctop, zarf, zarf-fips, newrelic-infrastructure-agent-fips, crossplane, dagger, spegel-fips, helmfile, buildkitd, docker-compose-fips, rancher-agent, tw, kubescape, kube-mgmt-fips,...

GHSA-FQW6-GF59-QR4W vulnerabilities

Vulnerabilities for packages: k9s, docker-cli-buildx, k3s, opa, neuvector-scanner, dagger, docker-compose, gogatekeeper, manifest-tool, newrelic-infrastructure-agent, zot, wolfictl, fuse-overlayfs-snapshotter, steampipe, trivy, zarf, k8ssandra-client, gatekeeper, headlamp, skaffold, tw, kots,...

CVE-2026-46680 vulnerabilities

Vulnerabilities for packages: k9s, docker-cli-buildx, k3s, opa, neuvector-scanner, dagger, docker-compose, gogatekeeper, manifest-tool, newrelic-infrastructure-agent, zot, wolfictl, fuse-overlayfs-snapshotter, steampipe, trivy, zarf, k8ssandra-client, gatekeeper, headlamp, skaffold, tw, kots,...

CVE-2026-25679 vulnerabilities

Vulnerabilities for packages: minc, newrelic-infra-operator, prometheus-pushgateway-fips, local-path-provisioner-fips, opentelemetry-collector, newrelic-fluent-bit-output-fips, stakater-reloader-fips, kyverno-policy-reporter-kyverno-plugin, prometheus-beat-exporter,...

CVE-2025-61732 vulnerabilities

Vulnerabilities for packages: mc, dynamic-localpv-provisioner, rancher-system-agent, kube-rbac-proxy, etcd, linkerd2-proxy-init, trillian, terraform, envoy-ratelimit, gitaly, crossplane-provider-keycloak, amazon-k8s-cni, kubernetes-dashboard, aws-node-termination-handler, incert, azurefile-csi,...

CVE-2025-68121 vulnerabilities

Vulnerabilities for packages: mc, dynamic-localpv-provisioner, rancher-system-agent, kube-rbac-proxy, etcd, trillian, terraform, envoy-ratelimit, crossplane-provider-keycloak, kubernetes-dashboard, aws-node-termination-handler, incert, azurefile-csi, terraform-provider-time,...

CLEANSTART-2026-RB28539 Within HostnameError

Security vulnerability affects the tigera-operator package. Within HostnameError...

CLEANSTART-2025-YJ25356 Security fixes for CVE-2025-61729 applied in versions: 1.40.2-r0

Security vulnerability affects the tigera-operator package. This issue is resolved in later releases. See references for CVE details...

GHSA-5MH9-3JWC-RP59 vulnerabilities

Vulnerabilities for packages: opentelemetry-collector, newrelic-fluent-bit-output-fips, stakater-reloader-fips, rancher-system-agent, secrets-store-csi-driver-provider-aws-fips, supercronic, nvidia-nsight-compute-13.0, chisel-fips, pulumi-kubernetes-operator, azure-service-operator-fips,...

GHSA-J5PM-7495-QMR3 vulnerabilities

Vulnerabilities for packages: newrelic-infra-operator, prometheus-pushgateway-fips, local-path-provisioner-fips, opentelemetry-collector, glow, stakater-reloader-fips, rancher-system-agent, podman, supercronic, kaf, jaeger-operator, nvidia-gpu-operator-validator, nvidia-nsight-compute-13.0,...

CVE-2025-25294 vulnerabilities

Vulnerabilities for packages: tigera-operator...

CVE-2025-25294 vulnerabilities

Vulnerabilities for packages: tigera-operator-fips, tigera-operator...

GHSA-MF24-CHXH-HMVJ vulnerabilities

Vulnerabilities for packages: tigera-operator...

GHSA-MF24-CHXH-HMVJ vulnerabilities

Vulnerabilities for packages: tigera-operator-fips, tigera-operator...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, kine, thanos, memcached-exporter, cluster-proportional-autoscaler, kube-rbac-proxy, vexctl, wire-go, aws-load-balancer-controller, http-echo, temporal, terraform, envoy-ratelimit, trillian, esbuild, kubernetes-dashboard, cert-exporter,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, kine, thanos, memcached-exporter, cluster-proportional-autoscaler, kube-rbac-proxy, vexctl, wire-go, aws-load-balancer-controller, http-echo, temporal, terraform, envoy-ratelimit, trillian, esbuild, kubernetes-dashboard, cert-exporter,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: mc, dynamic-localpv-provisioner, kine, pulumi-language-dotnet, memcached-exporter, cluster-proportional-autoscaler, thanos, vexctl, aws-load-balancer-controller, docker-compose, temporal, frp, envoy-ratelimit, terraform, trillian, zot, kubernetes-dashboard,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, kine, thanos, memcached-exporter, cluster-proportional-autoscaler, kube-rbac-proxy, vexctl, wire-go, aws-load-balancer-controller, http-echo, temporal, terraform, envoy-ratelimit, trillian, esbuild, kubernetes-dashboard, cert-exporter,...