Filter

Software

linuxfoundation yocto
73
linuxfoundation argo-cd
24
linuxfoundation harbor
20
linuxfoundation iot-yocto
15
linuxfoundation cups-filters
14
linuxfoundation runc
12
linuxfoundation argo continuous delivery
11
linuxfoundation containerd
11
linuxfoundation ceph
8
linuxfoundation kubeedge
8
linuxfoundation cubefs
6
linuxfoundation edge virtualization engine
5
linuxfoundation foomatic-filters
5
linuxfoundation osquery
5
linuxfoundation spinnaker
5
linuxfoundation backstage
4
linuxfoundation dex
4
linuxfoundation grpc swift
4
linuxfoundation indy-node
4
linuxfoundation nats-server
4
linuxfoundation open network operating system
4
linuxfoundation opendaylight
4
linuxfoundation the update framework
4
linuxfoundation besu
3
linuxfoundation cortex
3
linuxfoundation zowe api mediation layer
3
linuxfoundation dojo
2
linuxfoundation dojox
2
linuxfoundation fabric
2
linuxfoundation longhorn
2
linuxfoundation onnx
2
linuxfoundation rekor
2
linuxfoundation tremor-script
2
linuxfoundation vitess
2
linuxfoundation \@backstage\/plugin-techdocs
1
linuxfoundation \@backstage\/techdocs-common
1
linuxfoundation acrn
1
linuxfoundation auth backend
1
linuxfoundation automotive grade linux
1
linuxfoundation backstage catalog-model
1
linuxfoundation backstage core-components
1
linuxfoundation backstage plugin-catalog-backend
1
linuxfoundation baremetal operator
1
linuxfoundation cni network plugins
1
linuxfoundation container network interface
1
linuxfoundation dapr
1
linuxfoundation dapr dashboard
1
linuxfoundation dragonfly go
1
linuxfoundation fluid
1
linuxfoundation foomatic
1
linuxfoundation fossology
1
linuxfoundation free range routing
1
linuxfoundation imgcrypt
1
linuxfoundation jaeger
1
linuxfoundation knative func
1
linuxfoundation kubevela
1
linuxfoundation kubewarden-controller
1
linuxfoundation lima
1
linuxfoundation loopback-connector-postgresql
1
linuxfoundation mirage firewall
1
linuxfoundation modular open smart network
1
linuxfoundation nats.deno
1
linuxfoundation nats.js
1
linuxfoundation nats.ws
1
linuxfoundation open cluster management
1
linuxfoundation open container initiative distribution specification
1
linuxfoundation open container initiative image format specification
1
linuxfoundation openfeature
1
linuxfoundation opentelemetry instrumentation for java
1
linuxfoundation opentelemetry-go contrib
1
linuxfoundation pytorch
1
linuxfoundation rocket chip generator
1
linuxfoundation software for open networking in the cloud
1
linuxfoundation tekton pipelines
1
linuxfoundation tremor
1
linuxfoundation umoci
1
linuxfoundation zowe
1

Linuxfoundation SpinnakerImproper Access Control in spinnaker

critical
10
First published (updated )
CVE-2021-43832

Linuxfoundation Argo-cdArgo CD will blindly trust JWT claims if anonymous access is enabled

critical
10
First published (updated )
CVE-2022-29165

Linuxfoundation Loopback-connector-postgresqlloopback-connector-postgresql Vulnerable to Improper Sanitization of `contains` Filter

critical
10
First published (updated )
CVE-2022-35942

go/github.com/argoproj/argo-cd/v2Cluster secret might leak in cluster details page in Argo CD

critical
9.9
First published (updated )
CVE-2023-40029

Linuxfoundation Edge Virtualization EngineFreely Allocate Buffer on The Stack With Data From Socket

critical
9.9
First published (updated )
CVE-2023-43632

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Linuxfoundation Argo-cdImproper access control allows admin privilege escalation in Argo CD

critical
9.9
First published (updated )
CVE-2022-24768

Linuxfoundation BackstageInsecure sandbox in Backstage Scaffolder plugin

critical
9.9
First published (updated )
CVE-2023-35926

go/github.com/cubefs/cubefsInsecure random string generator used for sensitive data

critical
9.8
First published (updated )
CVE-2023-46740

go/github.com/cubefs/cubefsCubeFS leaks magic secret key when starting Blobstore access service

critical
9.8
First published (updated )
CVE-2023-46741

go/d7y.io/dragonfly/v2Dragonfly2 vulnerable to hard coded cyptographic key

critical
9.8
First published (updated )
CVE-2023-27584

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Linuxfoundation Nats-serverPath Traversal

critical
9.8
First published (updated )
CVE-2022-28357

Oracle Primavera UnifierPrototype Pollution

critical
9.8
First published (updated )
CVE-2021-23450

Redhat Enterprise Linux Server EusBuffer Overflow

critical
9.8
First published (updated )
CVE-2010-5325

CVE-2019-1010245Input Validation, OS Command Injection

critical
9.8
First published (updated )
CVE-2019-1010245

CVE-2019-1010234Input Validation

critical
9.8
First published (updated )
CVE-2019-1010234

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/dexA vulnerability exist in the SAML connector of the github.com/dexidp/dex library used to process SAM…

critical
9.8
First published (updated )
CVE-2020-27847

Linuxfoundation Tremor-scriptUse After Free

critical
9.8
First published (updated )
CVE-2021-45701

Linuxfoundation TremorMemory Safety Issue when using patch or merge on state and assign the result back to state

critical
9.8
First published (updated )
CVE-2021-39228

Linuxfoundation PytorchCode Injection, Command Injection

critical
9.8
First published (updated )
CVE-2022-45907

Linuxfoundation Modular Open Smart NetworkAuthentication vulnerability in MOSN v.0.23.0 allows attacker to escalate privileges via case-sensit…

critical
9.8
First published (updated )
CVE-2021-32163

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

pip/tufTUF (aka The Update Framework) through 0.12.1 has Improper Verification of a Cryptographic Signature…

critical
9.8
First published (updated )
CVE-2020-6174

go/github.com/nats-io/nats-server/v2The JWT library in NATS nats-server before 2.1.9 has Incorrect Access Control because of how expired…

critical
9.8
First published (updated )
CVE-2020-26892

Linuxfoundation DexCritical security issues in XML encoding in Dex

critical
9.6
First published (updated )
CVE-2020-26290

Linuxfoundation LonghornHost operations allowed in privileged Longhorn managed pods

critical
9.6
First published (updated )
CVE-2021-36779

Linuxfoundation Argo-cdArgo CD's certificate verification is skipped for connections to OIDC providers

critical
9.6
First published (updated )
CVE-2022-31105

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Linuxfoundation RuncOS Command Injection

critical
9.3
First published (updated )
CVE-2019-5736

Linuxfoundation OsqueryIn some configurations an attacker can inject a new executable path into the extensions.load file fo…

critical
9.3
First published (updated )
CVE-2019-3567

Linuxfoundation DexOAuth authorization code exposure in Dex

critical
9.3
First published (updated )
CVE-2022-39222

Linuxfoundation Argo-cdArgo CD users with any cluster secret update access may update out-of-bounds cluster secrets

critical
9.1
First published (updated )
CVE-2023-23947

Linuxfoundation ContainerdImproper Preservation of Permissions in containerd

critical
9.1
First published (updated )
CVE-2021-43816

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203