15 matches found
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: newrelic-fluent-bit-output, rabbitmq-messaging-topology-operator, helm, emissary, mattermost, postgres-operator, aws-network-policy-agent, neuvector-dbgen, osv-scanner, kafka-proxy, step-issuer, go, swagger, terraform-provider-sendgrid, polaris,...
CLEANSTART-2026-MQ21261 Security fixes for CVE-2025-47911, CVE-2025-58190, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2025-61732, CVE-2025-68119, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27141, CVE-2026-27142 applied in versions: 1.5.1-r0, 1.5.1-r1, 1.5.1-r2, 1.5.1-r3
Multiple security vulnerabilities affect the vertical-pod-autoscaler package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: trivy-operator, ksops, emissary, mattermost, cert-manager-webhook-pdns, flux, zot, src, tigera-operator, external-dns, timoni, crossplane-provider-aws-sqs, opentelemetry-collector-contrib, cluster-api-azure-controller, polaris, kube-logging-operator, cilium-cli,...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: trivy-operator, ksops, emissary, mattermost, cert-manager-webhook-pdns, flux, zot, src, tigera-operator, external-dns, timoni, crossplane-provider-aws-sqs, opentelemetry-collector-contrib, cluster-api-azure-controller, polaris, kube-logging-operator, cilium-cli,...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: seaweedfs-operator, nova-fips, crossplane-provider-aws-ec2-fips, datadog-agent-fips, deck, fleet-server, opentelemetry-collector-contrib-fips, caddy-fips, kube-rbac-proxy, cluster-api-azure-controller-fips, chezmoi, crossplane-provider-aws-cloudwatchlogs-fips,...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: seaweedfs-operator, nova-fips, crossplane-provider-aws-ec2-fips, datadog-agent-fips, deck, fleet-server, opentelemetry-collector-contrib-fips, caddy-fips, kube-rbac-proxy, cluster-api-azure-controller-fips, chezmoi, crossplane-provider-aws-cloudwatchlogs-fips,...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: ksops, helm, mattermost, postgres-operator, aws-network-policy-agent, neuvector-dbgen, src-fingerprint, osv-scanner, falcosidekick, kafka-proxy, step-issuer, swagger, aws-otel-collector, terraform-provider-sendgrid, polaris, percona-server-mongodb-operator,...
GHSA-H355-32PF-P2XM vulnerabilities
Vulnerabilities for packages: ksops, helm, mattermost, postgres-operator, aws-network-policy-agent, neuvector-dbgen, src-fingerprint, osv-scanner, falcosidekick, kafka-proxy, step-issuer, swagger, aws-otel-collector, terraform-provider-sendgrid, polaris, percona-server-mongodb-operator,...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: fzf, fq, ksops, helm, mattermost, velero, postgres-operator, aws-network-policy-agent, neuvector-dbgen, src-fingerprint, hello-world-golang, xcover, osv-scanner, falcosidekick, kafka-proxy, step-issuer, swagger, elvish, aws-otel-collector, terraform-provider-sendgrid...
GHSA-8JVR-VH7G-F8GX vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, dex-k8s-authenticator, kubeflow-fips, mc-fips, argo-events, fleet-server, go-jsonnet, hello-world-golang, caddy-fips, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, gofumpt, splunk-otel-collector,...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, dex-k8s-authenticator, kubeflow-fips, mc-fips, argo-events, fleet-server, caddy-fips, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, splunk-otel-collector, configmap-reload, tailscale,...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws-fips, azure-container-networking, dex-k8s-authenticator, kubeflow-fips, mc-fips, argo-events, fleet-server, go-jsonnet, hello-world-golang, caddy-fips, dkron, k8s-metacollector, prometheus-elasticsearch-exporter, gofumpt, splunk-otel-collector,...
CLEANSTART-2026-UM63521 Within HostnameError
Multiple security vulnerabilities affect the vertical-pod-autoscaler-fips package. Within HostnameError. See references for individual vulnerability details...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: kubeflow-fips, mc-fips, hubble-ui, caddy-fips, prometheus-elasticsearch-exporter, buildkitd, configmap-reload, kyverno-policy-reporter, eksctl, nats, temporal-server, prometheus-nats-exporter, secrets-store-csi-driver-provider-azure, newrelic-infrastructure-agent,...
GHSA-4374-P667-P6C8 vulnerabilities
Vulnerabilities for packages: dex-k8s-authenticator, dynamic-localpv-provisioner-fips, kubeflow-fips, cluster-autoscaler-fips, kubernetes-csi-external-provisioner, prometheus-pushgateway, flux-helm-controller, grpcurl, cosign, kube-state-metrics-fips, terraform-provider-sendgrid,...