58686 matches found
GHSA-9R4W-JG96-92MV vulnerabilities
Vulnerabilities for packages: teleport, tbot, teleport-operator-fips...
GHSA-8XWF-RJM4-XVHV vulnerabilities
Vulnerabilities for packages: cluster-api-helm-controller-fips, ocm-cli, cert-manager-cmctl-fips, ratify-fips, teleport, cluster-api-helm-controller, kubescape-operator, eksctl, conftest, helm-exporter, kube-arangodb, k8ssandra-client-fips, zarf-fips, argo-cd, gatekeeper, kgateway, chaos-mesh,...
GHSA-XF85-363P-868W vulnerabilities
Vulnerabilities for packages: cluster-api-helm-controller-fips, ocm-cli, cert-manager-cmctl-fips, ratify-fips, teleport, cluster-api-helm-controller, kubescape-operator, eksctl, conftest, helm-exporter, kube-arangodb, k8ssandra-client-fips, zarf-fips, argo-cd, gatekeeper, kgateway, chaos-mesh,...
GHSA-VH4V-2XQ2-G5CG vulnerabilities
Vulnerabilities for packages: cluster-api-helm-controller-fips, ocm-cli, cert-manager-cmctl-fips, ratify-fips, teleport, cluster-api-helm-controller, kubescape-operator, eksctl, conftest, helm-exporter, kube-arangodb, k8ssandra-client-fips, zarf-fips, argo-cd, gatekeeper, kgateway, chaos-mesh,...
CVE-2026-48978 vulnerabilities
Vulnerabilities for packages: cluster-api-helm-controller-fips, ocm-cli, cert-manager-cmctl-fips, ratify-fips, teleport, cluster-api-helm-controller, kubescape-operator, eksctl, conftest, helm-exporter, kube-arangodb, k8ssandra-client-fips, zarf-fips, argo-cd, gatekeeper, kgateway, chaos-mesh,...
CVE-2026-50162 vulnerabilities
Vulnerabilities for packages: cluster-api-helm-controller-fips, ocm-cli, cert-manager-cmctl-fips, ratify-fips, teleport, cluster-api-helm-controller, kubescape-operator, eksctl, conftest, helm-exporter, kube-arangodb, k8ssandra-client-fips, zarf-fips, argo-cd, gatekeeper, kgateway, chaos-mesh,...
CVE-2026-50151 vulnerabilities
Vulnerabilities for packages: cluster-api-helm-controller-fips, ocm-cli, cert-manager-cmctl-fips, ratify-fips, teleport, cluster-api-helm-controller, kubescape-operator, eksctl, conftest, helm-exporter, kube-arangodb, k8ssandra-client-fips, zarf-fips, argo-cd, gatekeeper, kgateway, chaos-mesh,...
GHSA-JXPM-75MH-9FP7 vulnerabilities
Vulnerabilities for packages: cluster-api-helm-controller-fips, ocm-cli, cert-manager-cmctl-fips, ratify-fips, teleport, cluster-api-helm-controller, kubescape-operator, eksctl, conftest, helm-exporter, kube-arangodb, k8ssandra-client-fips, zarf-fips, argo-cd, gatekeeper, kgateway, chaos-mesh,...
MinIO Operator Console Authentication Bypass
MinIO Console is a graphical user interface for the for MinIO Operator. MinIO itself is a multi-cloud object storage project. Affected versions are subject to an authentication bypass issue in the Operator Console when an external IDP is enabled. id: CVE-2021-41266 info: name: MinIO Operator...
CVE-2026-49835 vulnerabilities
Vulnerabilities for packages: kyverno, aactl, policy-controller, trivy-operator, teleport, goreleaser, neuvector-sigstore-interface, spire-server, tkn, zarf, kyverno-notation-aws, crossplane, tekton-chains, trivy...
GHSA-9C54-X2G4-V92J vulnerabilities
Vulnerabilities for packages: kyverno, aactl, policy-controller, trivy-operator, teleport, goreleaser, neuvector-sigstore-interface, spire-server, tkn, zarf, kyverno-notation-aws, crossplane, tekton-chains, trivy...
PYSEC-2026-413 Meta Ads MCP: Unauthenticated HTTP MCP Tool Execution Leaks Operator Meta Access Token
Unauthenticated HTTP MCP Tool Execution Leaks Operator Meta Access Token | Field | Value | | ---------------- | ----- | | Repository | pipeboard-co/meta-ads-mcp | | Affected version | ≤ 1.0.101 commit 496c988 7d14226; Versions 1.0.102–1.0.105 lack git tags, so patch status is unconfirmed. | |...
CVE-2026-46604 vulnerabilities
Vulnerabilities for packages: gitlab-workhorse-ce, listmonk, seaweedfs-operator, seaweedfs, hugo, seaweedfs-operator-fips, seaweedfs-fips, rclone-fips, rclone...
GHSA-QVQC-4C52-X6QP vulnerabilities
Vulnerabilities for packages: guac, kube-arangodb, gpu-operator-fips, gpu-operator...
CVE-2026-49349 vulnerabilities
Vulnerabilities for packages: guac, kube-arangodb, gpu-operator-fips, gpu-operator...
Security Bulletin: Multiple Vulnerabilities in IBM Operator for PostgreSQL
Summary Multiple vulnerabilities were addressed in IBM Operator for PostgreSQL version v28.3.3. Vulnerability Details CVEID:CVE-2026-45447 DESCRIPTION: Issue summary: A specially crafted PKCS7 or S/MIME signed message could trigger a use-after-free during PKCS7 signature verification. Impact...
GHSA-X527-X647-Q7GG vulnerabilities
Vulnerabilities for packages: flux-fips, flux-source-controller-fips, trivy-fips, flux-image-automation-controller, seaweedfs-rocksdb-fips, kyverno-fips, omnictl-multiarch, loki, spire-server, rancher-agent, osv-scanner, gitlab-workhorse-ce-fips, kubernetes, minio-fips, knative-eventing-fips,...
GHSA-78MQ-XCR3-XM33 vulnerabilities
Vulnerabilities for packages: syft, pulumi-language-dotnet, argo-events-fips, flux-fips, chainloop-cli-fips, flux-source-controller-fips, trivy-fips, flux-image-automation-controller, kyverno-fips, omnictl-multiarch, loki, spire-server, gomplate, rancher-agent, dagger, osv-scanner,...
GHSA-Q4H4-GMJ2-QVW2 vulnerabilities
Vulnerabilities for packages: src, argo-events-fips, crossplane-provider-aws-directconnect, crossplane-provider-aws-cloudwatchevents, crossplane-provider-azure-synapse, flux-image-automation-controller, agentbeat, crossplane-provider-aws-emr-fips, loki, gomplate, docker-machine-driver-linode,...
GHSA-QPW4-5X99-6VJP vulnerabilities
Vulnerabilities for packages: syft, pulumi-language-dotnet, argo-events-fips, docker-fips, flux-fips, rootlesskit, chainloop-cli-fips, docker, longhorn-cli-fips, flux-source-controller-fips, trivy-fips, flux-image-automation-controller, seaweedfs-rocksdb-fips, kyverno-fips, omnictl-multiarch, lok...