EUVD-2013-0034

Malware in sbrugna...

EUVD-2025-24649

Malicious code in bioql PyPI...

GHSA-FCXQ-V2R3-CC8H External Secrets Operator's Missing Namespace Restriction Allows Unauthorized Secret Access

Summary A vulnerability was discovered in the External Secrets Operator where the List calls for Kubernetes Secret and SecretStore resources performed by the PushSecret controller did not apply a namespace selector. This flaw allowed an attacker to use label selectors to list and read...

org.typelevel:grackle-circe_sjs1_2.13 (>=0.15.0 <=0.17.2), org.typelevel:grackle-generic_sjs1_2.13 (>=0.15.0 <=0.17.2) +2 more potentially affected by CVE-2023-50730 via org.typelevel:grackle-core_sjs1_2.13 (>=0.15.0 <=0.17.2)

org.typelevel:grackle-coresjs12.13 MAVEN version =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.17.2 Source cves: CVE-2023-50730 Source advisory: OSV:GHSA-G56X-7J6W-G8R8...

org.typelevel:grackle-circe_native0.4_2.13 (>=0.15.0 <=0.17.2), org.typelevel:grackle-generic_native0.4_2.13 (>=0.15.0 <=0.17.2) +2 more potentially affected by CVE-2023-50730 via org.typelevel:grackle-core_native0.4_2.13 (>=0.15.0 <=0.17.2)

org.typelevel:grackle-corenative0.42.13 MAVEN version =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.17.2 Source cves: CVE-2023-50730 Source advisory: OSV:GHSA-G56X-7J6W-G8R8...

org.typelevel:grackle-circe_native0.4_3 (>=0.15.0 <=0.17.2), org.typelevel:grackle-generic_native0.4_3 (>=0.15.0 <=0.17.2) +2 more potentially affected by CVE-2023-50730 via org.typelevel:grackle-core_native0.4_3 (>=0.15.0 <=0.17.2)

org.typelevel:grackle-corenative0.43 MAVEN version =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.17.2 Source cves: CVE-2023-50730 Source advisory: OSV:GHSA-G56X-7J6W-G8R8...

PYSEC-2013-14

Salt aka SaltStack before 0.15.0 through 0.17.0 allows remote authenticated minions to impersonate arbitrary minions via a crafted minion with a valid key...