Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-jj94-6f5c-65r8
  • Go/github.com/zitadel/zitadel/v2
 ZITADEL Allows Unauthorized Access After Organization or Project Deactivation 5 hours ago
  • Fix available
  • Severity - 7.4 (High)
GHSA-qr2h-7pwm-h393
  • Go/github.com/zitadel/zitadel/v2
 ZITADEL's Service Users Deactivation not Working 5 hours ago
  • Fix available
  • Severity - 8.6 (High)
GHSA-2w5j-qfvw-2hf5
  • Go/github.com/zitadel/zitadel/v2
 ZITADEL's User Grant Deactivation not Working 5 hours ago
  • Fix available
  • Severity - 7.4 (High)
GHSA-62c8-mh53-4cqv
  • Go/github.com/traefik/traefik/v3
  • Go/github.com/traefik/traefik/v2
  • Go/github.com/traefik/traefik
 HTTP client can manipulate custom HTTP headers that are added by Traefik 6 hours ago
  • Fix available
  • Severity - 9.3 (Critical)
GHSA-hpc8-7wpm-889w
  • Go/d7y.io/dragonfly/v2
 Dragonfly2 has hard coded cyptographic key 6 hours ago
  • Fix available
  • Severity - 9.3 (Critical)
GHSA-xxxw-3j6h-q7h6
  • Go/github.com/grafana/grafana-plugin-sdk-go
 Grafana plugin SDK Information Leakage 8 hours ago
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-h92q-fgpp-qhrq
  • Go/github.com/coredns/coredns
 CoreDNS Cache Poisoning via a birthday attack 23 hours ago
  • No fix available
  • Severity - 6.3 (Medium)
GHSA-723h-x37g-f8qm
  • Go/github.com/chaosblade-io/chaosblade
 Chaosblade vulnerable to OS command execution yesterday
  • Fix available
  • Severity - 9.3 (Critical)
GHSA-jhg6-6qrx-38mr
  • Go/github.com/authzed/spicedb
 SpiceDB having multiple caveats on resources of the same type may improperly result in no permission yesterday
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-hfmw-7g3m-gj6q
  • Go/github.com/coredns/coredns
 CoreDNS vulnerable to TuDoor Attacks yesterday
  • Fix available
  • Severity - 8.2 (High)
GO-2024-3129
  • Go/github.com/openshift/builder
 OpenShift Builder has a path traversal, allows command injection in privileged BuildContainer in github.com/openshift/builder yesterday
  • No fix available
GO-2024-3128
  • Go/github.com/openshift/openshift-controller-manager
 OpenShift Controller Manager Improper Privilege Management in github.com/openshift/openshift-controller-manager yesterday
  • No fix available
GO-2024-3124
  • Go/github.com/osrg/gobgp/v3
 Buffer Overflow vulnerability in osrg gobgp in github.com/osrg/gobgp 2 days ago
  • Fix available
GHSA-j8gh-87rx-c7w9
  • Go/github.com/openshift/openshift-controller-manager
 OpenShift Controller Manager Improper Privilege Management 2 days ago
  • Fix available
  • Severity - 6.4 (Medium)
GHSA-qqv8-ph7f-h3f7
  • Go/github.com/openshift/builder
 OpenShift Builder has a path traversal, allows command injection in privileged BuildContainer 2 days ago
  • No fix available
  • Severity - 6.4 (Medium)
GO-2024-3123
  • Go/github.com/consensys/gnark
 Commitments to private witnesses in Groth16 as implemented break zero-knowledge property in github.com/consensys/gnark 5 days ago
  • Fix available
Load more...