CLEANSTART-2026-LZ54652 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729 applied in versions: 1.7.0-r0, 1.7.1-r0

Multiple security vulnerabilities affect the vault-k8s package. These issues are resolved in later releases. See references for individual vulnerability details...

Symlink Attack

Overview Affected versions of this package are vulnerable to Symlink Attack via the the Vault Kubernetes Authentication Provider. An attacker can access sensitive files by specifying tokenpath configuration parameter to any file on the Consul server node that later returned as jwt data and sent t...

CLEANSTART-2026-OO14630 tar

Multiple security vulnerabilities affect the vault-k8s package. tar. See references for individual vulnerability details...

CLEANSTART-2026-HY43775 Within HostnameError

Multiple security vulnerabilities affect the vault-k8s package. Within HostnameError. See references for individual vulnerability details...

CLEANSTART-2025-AZ51267 Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.0-r0

Multiple security vulnerabilities affect the vault-k8s-fips package. These issues are resolved in later releases. See references for individual GHSA details...

CLEANSTART-2025-US16386 Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.2-r0

Multiple security vulnerabilities affect the vault-k8s-fips package. These issues are resolved in later releases. See references for individual GHSA details...

CVE-2025-47906 vulnerabilities

Vulnerabilities for packages: linkerd2-proxy-init, vault-k8s, sftpgo-plugin-pubsub, kuberay-operator, secrets-store-csi-driver-provider-aws, git-lfs, newrelic-fluent-bit-output, shfmt, pvc-autoresizer, falco, sftpgo-plugin-geoipfilter, newrelic-nri-statsd, mongodb-kubernetes-operator,...

GHSA-V6V8-XJ6M-XWQH vulnerabilities

Vulnerabilities for packages: flux-helm-controller, guac, zarf, rekor-fips, policy-controller-fips, terraform, falcoctl, opentelemetry-collector, prometheus-fips, kyverno-fips, rook, tekton-chains, gomplate-fips, src-fingerprint-fips, timestamp-authority, gh, neuvector-sigstore-interface-fips,...