Filter
AND
Redhat Openshift Container PlatformCri-o: malicious container can create symlink on host
8.1
EPSS
0.04%
First published (updated )
Redhat Openshift Container PlatformOpenshift-console: unauthenticated installation of helm charts
6.5
EPSS
0.05%
First published (updated )
go/github.com/cri-o/cri-oCri-o: pods are able to break out of resource confinement on cgroupv2
7.5
EPSS
0.06%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
F5 Big-ip Local Traffic ManagerSome HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service
7.8
First published (updated )
Elastic KibanaKibana Arbitrary Code Execution
First published (updated )
Redhat Openshift Container PlatformHeketi is used to manage GlusterFS nodes and volumes. The default configuration of Heketi does not r…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Kube-rbac-proxy Project Kube-rbac-proxyThe kube-rbac-proxy container before version 0.4.1 as used in Red Hat OpenShift Container Platform d…
7.5
First published (updated )
Redhat Openshift Container PlatformA memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux…
3.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jenkins Script SecurityJenkins Script Security Plugin Sandbox Bypass Vulnerability
First published (updated )
Jenkins Pipeline\Jenkins Matrix Project Plugin Remote Code Execution Vulnerability
First published (updated )
Canonical Ubuntu LinuxApache HTTP Server Privilege Escalation Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jenkins JenkinsJenkins Stapler Web Framework Deserialization of Untrusted Data Vulnerability
First published (updated )
ubuntu/pygmentsAn infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when pe…
7.5
First published (updated )
Oracle Financial Services Analytical Applications InfrastructureFasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code b…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Jboss Enterprise Application PlatformInput Validation
9.8
First published (updated )
Kubernetes External-provisionerKubernetes CSI volume snapshot, cloning and resizing features can result in unauthorized volume data access or mutation
6.5
First published (updated )
FasterXML jackson-databindAn unsafe deserialization vulnerability was found due to incomplete blacklisting of the unsafe eleme…
9.8
First published (updated )
Kubernetes Kuberneteskubectl cp allows symlink directory traversal
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.