Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2024-10849
  • Not specified
 Malicious code in my-wallet-backupt-decryption-tool (npm) 5 hours ago
  • No fix available
GHSA-jh6x-7xfg-9cq2
  • Maven/org.opencastproject:opencast-elasticsearch-impl
 Searching Opencast may cause a denial of service 8 hours ago
  • Fix available
  • Severity - 6.5 (Medium)
CGA-xpg8-pwc5-69x9
  • Chainguard/kafka-3.9
  • Wolfi/kafka-3.9
  • Chainguard/kafka-bitnami-compat-3.9
  • Wolfi/kafka-bitnami-compat-3.9
 See record for full details 8 hours ago
  • Fix available
GHSA-gjcc-jvgw-wvwj
  • PyPI/litestar
 Litestar allows unbounded resource consumption (DoS vulnerability) 9 hours ago
  • No fix available
  • Severity - 8.2 (High)
CGA-hh2f-7jv5-mrxx
  • Chainguard/kubernetes-1.28
  • Chainguard/kube-apiserver-1.28
  • Chainguard/kube-apiserver-1.28-default
  • Chainguard/kube-controller-manager-1.28
  • Chainguard/kube-controller-manager-1.28-default
  • Chainguard/kube-proxy-1.28
  • Chainguard/kube-proxy-1.28-default
  • Chainguard/kube-proxy-1.28-default-compat
  • Chainguard/kube-scheduler-1.28
  • Chainguard/kube-scheduler-1.28-default
  • Chainguard/kubeadm-1.28
  • Chainguard/kubeadm-1.28-default
  • Chainguard/kubectl-1.28
  • Chainguard/kubectl-1.28-bitnami-compat
  • Chainguard/kubectl-1.28-default
  • Chainguard/kubectl-bash-completion-1.28
  • Chainguard/kubelet-1.28
  • Chainguard/kubelet-1.28-default
  • Chainguard/kubernetes-1.28-default
  • Chainguard/kubernetes-pause-1.28
  • Chainguard/kubernetes-pause-compat-1.28
 See record for full details 10 hours ago
  • Fix available
CGA-9298-jp5q-35gg
  • Chainguard/temporal-ui-server-fips
 See record for full details 10 hours ago
  • Fix available
GHSA-r4pg-vg54-wxx4
  • Go/github.com/cert-manager/cert-manager
 cert-manager ha a potential slowdown / DoS when parsing specially crafted PEM inputs 10 hours ago
  • Fix available
  • Severity - 6.9 (Medium)
CGA-q338-x595-qvjx
  • Chainguard/temporal-ui-server
  • Wolfi/temporal-ui-server
  • Chainguard/temporal-ui-server-oci-entrypoint
  • Wolfi/temporal-ui-server-oci-entrypoint
 See record for full details 11 hours ago
  • Fix available
GHSA-9c5p-35gj-jqp4
  • Go/github.com/rancher/rancher
 Rancher Helm Applications may have sensitive values leaked 12 hours ago
  • Fix available
  • Severity - 6.2 (Medium)
GHSA-ffp2-8p2h-4m5j
  • RubyGems/pwpush
 Password Pusher rate limiter can be bypassed by forging proxy headers 12 hours ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-7225-m954-23v7
  • Go/cosmossdk.io/math
 ASA-2024-010: cosmossdk.io/math: Mismatched bit-length validation in sdk.Int and sdk.Dec can lead to panic 12 hours ago
  • Fix available
  • Severity - 8.7 (High)
GHSA-j5hq-5jcr-xwx7
  • Go/github.com/rancher/steve
 github.com/rancher/steve's users can issue watch commands for arbitrary resources 12 hours ago
  • Fix available
  • Severity - 7.7 (High)
CGA-72h6-hxqw-wfpj
  • Chainguard/efs-utils
  • Wolfi/efs-utils
 See record for full details 12 hours ago
  • Fix available
MAL-2024-10847
  • Not specified
 Malicious code in eslint-tools (npm) 13 hours ago
  • No fix available
MAL-2024-10848
  • Not specified
 Malicious code in npm-cli-release-please (npm) 13 hours ago
  • No fix available
GO-2024-3122
  • Go/github.com/consensys/gnark
 gnark's Groth16 commitment extension unsound for more than one commitment in github.com/consensys/gnark 13 hours ago
  • Fix available
Load more...