Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-27wf-5967-98gx
  • Go/k8s.io/kubernetes
 Kubernetes kubelet arbitrary command execution yesterday
  • Fix available
  • Severity - 8.1 (High)
GHSA-mr95-vfcf-fx9p
  • Go/github.com/apache/incubator-answer
 Apache Answer: Predictable Authorization Token Using UUIDv1 yesterday
  • Fix available
  • Severity - 2.6 (Low)
GHSA-49cc-xrjf-9qf7
  • Go/github.com/drakkan/sftpgo/v2
 SFTPGo allows administrators to restrict command execution from the EventManager 2 days ago
  • Fix available
  • Severity - 5.1 (Medium)
GO-2024-3279
  • Go/cosmossdk.io/math
 ASA-2024-010: cosmossdk.io/math: Mismatched bit-length validation in sdk.Int and sdk.Dec can lead to panic 2 days ago
  • Fix available
GO-2024-3282
  • Go/github.com/cert-manager/cert-manager
 cert-manager ha a potential slowdown / DoS when parsing specially crafted PEM inputs in github.com/cert-manager/cert-manager 2 days ago
  • Fix available
GO-2024-3280
  • Go/github.com/rancher/rancher
 Rancher Helm Applications may have sensitive values leaked in github.com/rancher/rancher 2 days ago
  • No fix available
GO-2024-3281
  • Go/github.com/rancher/steve
 github.com/rancher/steve's users can issue watch commands for arbitrary resources in github.com/rancher/steve 2 days ago
  • Fix available
GO-2024-3283
  • Go/github.com/drakkan/sftpgo
  • Go/github.com/drakkan/sftpgo/v2
 SFTPGo allows administrators to restrict command execution from the EventManager in github.com/drakkan/sftpgo 2 days ago
  • Fix available
GHSA-r4pg-vg54-wxx4
  • Go/github.com/cert-manager/cert-manager
 cert-manager ha a potential slowdown / DoS when parsing specially crafted PEM inputs 3 days ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-9c5p-35gj-jqp4
  • Go/github.com/rancher/rancher
 Rancher Helm Applications may have sensitive values leaked 3 days ago
  • Fix available
  • Severity - 6.2 (Medium)
GHSA-7225-m954-23v7
  • Go/cosmossdk.io/math
 ASA-2024-010: cosmossdk.io/math: Mismatched bit-length validation in sdk.Int and sdk.Dec can lead to panic 3 days ago
  • Fix available
  • Severity - 8.7 (High)
GHSA-j5hq-5jcr-xwx7
  • Go/github.com/rancher/steve
 github.com/rancher/steve's users can issue watch commands for arbitrary resources 3 days ago
  • Fix available
  • Severity - 7.7 (High)
GO-2024-3122
  • Go/github.com/consensys/gnark
 gnark's Groth16 commitment extension unsound for more than one commitment in github.com/consensys/gnark 3 days ago
  • Fix available
GO-2024-3140
  • Go/github.com/grafana/grafana-plugin-sdk-go
 Grafana plugin SDK Information Leakage in github.com/grafana/grafana-plugin-sdk-go 3 days ago
  • Fix available
GO-2024-3259
  • Go/github.com/cometbft/cometbft
 CometBFT Vote Extensions: Panic when receiving a Pre-commit with an invalid data in github.com/cometbft/cometbft 3 days ago
  • Fix available
GO-2024-3265
  • Go/github.com/runatlantis/atlantis
 Git credentials are exposed in Atlantis logs in github.com/runatlantis/atlantis 3 days ago
  • Fix available
Load more...