Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
CLEANSTART-2026-DO31246
  • CleanStart/terragrunt-fips
 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-KT28044
  • CleanStart/terragrunt-fips
 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-LZ84631
  • CleanStart/apache-zookeeper
 Security fixes for ghsa-72hv-8253-57qq, ghsa-qqpg-mvqg-649v applied in versions: 3.9.4-r0, 3.9.4-r6 30 Apr
  • Fix available
CLEANSTART-2026-DN20646
  • CleanStart/percona-xtradb-cluster-operator-fips
 spdystream is a Go library for multiplexing streams over SPDY connections 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-HV96032
  • CleanStart/kor
 attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-CZ64396
  • CleanStart/atlantis
 Security fixes for ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x, ghsa-wjrx-6529-hcj3 applied in versions: 0.37.1-r1 30 Apr
  • Fix available
CLEANSTART-2026-MD91760
  • CleanStart/kor
 attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-HQ88036
  • CleanStart/terragrunt-fips
 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-FR97108
  • CleanStart/terragrunt-fips
 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-CN84623
  • CleanStart/opentofu-fips
 Within HostnameError 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-GY48351
  • CleanStart/opentofu-fips
 Within HostnameError 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-MI12470
  • CleanStart/opentofu-fips
 Within HostnameError 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-CZ07385
  • CleanStart/tekton-pipelines-fips
 Docker CLI for Windows searches for plugin binaries in C:\\ProgramData\\Docker\\cli-plugins, a directory that does not exist by default 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-FU04414
  • CleanStart/tekton-pipelines-fips
 Docker CLI for Windows searches for plugin binaries in C:\\ProgramData\\Docker\\cli-plugins, a directory that does not exist by default 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-GN46454
  • CleanStart/apache-nifi
 When applications specify HTTP response headers for servlet applications using Spring Security, there is the possibility that the HTTP Headers will not be written 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-FK30234
  • CleanStart/tekton-pipelines-fips
 Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web To... 30 Apr
  • Fix available
  • Severity - 9.8 (Critical)
Load more...