Filter
Software
linuxfoundation harbor
20
linuxfoundation ceph
8
linuxfoundation kubeedge
8
linuxfoundation cubefs
6
linuxfoundation edge virtualization engine
5
linuxfoundation osquery
5
linuxfoundation spinnaker
5
linuxfoundation dex
4
linuxfoundation grpc swift
4
linuxfoundation indy-node
4
linuxfoundation onnx
4
linuxfoundation open network operating system
4
linuxfoundation opendaylight
4
linuxfoundation the update framework
4
linuxfoundation besu
3
linuxfoundation cortex
3
linuxfoundation zowe api mediation layer
3
linuxfoundation dojox node.js
2
linuxfoundation fabric
2
linuxfoundation longhorn
2
linuxfoundation software for open networking in the cloud
2
linuxfoundation tremor-script
2
linuxfoundation vitess
2
linuxfoundation \@backstage\/plugin-techdocs
1
linuxfoundation \@backstage\/techdocs-common
1
linuxfoundation acrn
1
linuxfoundation auth backend
1
linuxfoundation dapr
1
linuxfoundation dapr dashboard
1
linuxfoundation dragonfly go
1
linuxfoundation foomatic
1
linuxfoundation fossology
1
linuxfoundation imgcrypt
1
linuxfoundation jaeger
1
linuxfoundation knative func
1
linuxfoundation kubevela
1
linuxfoundation kubewarden-controller
1
linuxfoundation lima
1
linuxfoundation loopback-connector-postgresql
1
linuxfoundation mirage firewall
1
linuxfoundation modular open smart network
1
linuxfoundation nats.deno
1
linuxfoundation nats.js
1
linuxfoundation nats.ws
1
linuxfoundation open cluster management
1
linuxfoundation open container initiative distribution specification
1
linuxfoundation opentelemetry instrumentation for java
1
linuxfoundation opentelemetry-go contrib
1
linuxfoundation pytorch
1
linuxfoundation rocket chip generator
1
linuxfoundation tekton pipelines
1
linuxfoundation tremor
1
linuxfoundation umoci
1
linuxfoundation zowe
1
Linuxfoundation SpinnakerImproper Access Control in spinnaker
10
First published (updated )
Argo CDArgo CD will blindly trust JWT claims if anonymous access is enabled
10
First published (updated )
Linuxfoundation Loopback-connector-postgresqlloopback-connector-postgresql Vulnerable to Improper Sanitization of `contains` Filter
10
First published (updated )
Argo CDCluster secret might leak in cluster details page in Argo CD
9.9
First published (updated )
Linuxfoundation Edge Virtualization EngineFreely Allocate Buffer on The Stack With Data From Socket
9.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Argo CDImproper access control allows admin privilege escalation in Argo CD
9.9
First published (updated )
npm/@backstage/plugin-scaffolder-backendInsecure sandbox in Backstage Scaffolder plugin
9.9
First published (updated )
go/github.com/cubefs/cubefsInsecure random string generator used for sensitive data
9.8
First published (updated )
go/github.com/cubefs/cubefsCubeFS leaks magic secret key when starting Blobstore access service
9.8
First published (updated )
Yocto ProjectYocto Project Security Advisory - BitBake/Toaster
9.8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/d7y.io/dragonfly/v2Dragonfly2 vulnerable to hard coded cyptographic key
9.8
First published (updated )
CVE-2019-1010245Input Validation, OS Command Injection
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/dexA vulnerability exist in the SAML connector of the github.com/dexidp/dex library used to process SAM…
9.8
First published (updated )
Linuxfoundation TremorMemory Safety Issue when using patch or merge on state and assign the result back to state
9.8
First published (updated )
Linuxfoundation PytorchCode Injection, Command Injection
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Linuxfoundation Modular Open Smart NetworkAuthentication vulnerability in MOSN v.0.23.0 allows attacker to escalate privileges via case-sensit…
9.8
First published (updated )
pip/tufTUF (aka The Update Framework) through 0.12.1 has Improper Verification of a Cryptographic Signature…
9.8
First published (updated )
go/github.com/nats-io/nats-server/v2The JWT library in NATS nats-server before 2.1.9 has Incorrect Access Control because of how expired…
9.8
First published (updated )
Linuxfoundation DexCritical security issues in XML encoding in Dex
9.6
First published (updated )
Linuxfoundation LonghornHost operations allowed in privileged Longhorn managed pods
9.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Argo CDArgo CD's certificate verification is skipped for connections to OIDC providers
9.6
First published (updated )
Linuxfoundation OsqueryIn some configurations an attacker can inject a new executable path into the extensions.load file fo…
9.3
First published (updated )
Linuxfoundation DexOAuth authorization code exposure in Dex
9.3
First published (updated )
FedoraVersions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the…
9.1
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.