Filter
AND
-Infinity
0
Trending
Spinnaker OrcaImproper Access Control in spinnaker
10
First published (updated )
Argo CDImproper access control allows admin privilege escalation in Argo CD
9.9
First published (updated )
Argo CDArgo CD will blindly trust JWT claims if anonymous access is enabled
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/github.com/argoproj/argo-cd/v2External URLs for Deployments can include javascript in argo-cd
First published (updated )
Linux Foundation Argo CDArgo CD's certificate verification is skipped for connections to OIDC providers
9.6
First published (updated )
Loopback Connector for PostgreSQLloopback-connector-postgresql Vulnerable to Improper Sanitization of `contains` Filter
10
First published (updated )
Hyperledger BesuIncorrect Conversion between Numeric Types in Besu Ethereum Client
9.1
First published (updated )
go/d7y.io/dragonfly/v2Dragonfly2 vulnerable to hard coded cyptographic key
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
containerdImproper Preservation of Permissions in containerd
9.1
First published (updated )
PipeCDInsecure permissions in pipecd v0.49 allow attackers to gain access to the service account's token, …
9.8
First published (updated )
Modular Open Smart NetworkAuthentication vulnerability in MOSN v.0.23.0 allows attacker to escalate privileges via case-sensit…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Argo CDArgo CD users with any cluster secret update access may update out-of-bounds cluster secrets
9.1
First published (updated )
Red Hat FedoraVersions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the…
9.1
EPSS
0.04%
First published (updated )
Yocto ProjectYocto Project Security Advisory - BitBake/Toaster
9.8
EPSS
0.04%
First published (updated )
Zowe API Mediation LayerHealth endpoint offers list of onboarded services to unauthenticated users
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
npm/@backstage/plugin-scaffolder-backendInsecure sandbox in Backstage Scaffolder plugin
9.9
First published (updated )
pip/tufTUF (aka The Update Framework) through 0.12.1 has Improper Verification of a Cryptographic Signature…
9.8
First published (updated )
Argo CDCluster secret might leak in cluster details page in Argo CD
9.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linux Foundation Edge Virtualization EngineFreely Allocate Buffer on The Stack With Data From Socket
9.9
First published (updated )
Argo CDAll unpatched versions of Argo CD starting with v1.0.0 are vulnerable to an improper access control …
First published (updated )
go/github.com/cubefs/cubefsInsecure random string generator used for sensitive data
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.