Lucene search

K

BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator), BIG-IQ Centralized Management, BIG-IQ Cloud And Orchestration, IWorkflow, Enterprise Manager Security Vulnerabilities

nodejsblog

Tuesday, July 2, 2024 Security Releases

Summary The Node.js project will release new versions of the 22.x, 20.x, 18.x releases lines on or shortly after, Tuesday, July 2, 2024 in order to address: 1 high severity issues. 2 medium severity issues. 3 low severity issues. Node.js fetch will be upgraded to undici v6.19.2 on Node.js 18.x...

7AI Score

2024-07-02 12:00 AM

59

openbugbounty

endevlocal.be Cross Site Scripting vulnerability OBB-3939583

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-29 09:34 AM

openbugbounty

bl-india.com Cross Site Scripting vulnerability OBB-3939580

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-29 09:24 AM

openbugbounty

ets-chanu.com Cross Site Scripting vulnerability OBB-3939579

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-29 09:22 AM

openbugbounty

portal.krsmultipro.com Cross Site Scripting vulnerability OBB-3939577

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

2024-06-29 09:18 AM

openbugbounty

lagrangedupoirier.com Cross Site Scripting vulnerability OBB-3939572

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

2024-06-29 09:15 AM

openbugbounty

cardatachecks.co.uk Cross Site Scripting vulnerability OBB-3939566

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-29 09:12 AM

openbugbounty

tnbnewyearseve.bpt.me Cross Site Scripting vulnerability OBB-3939562

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-29 09:10 AM

openbugbounty

portalinvestigacion.idival.org Cross Site Scripting vulnerability OBB-3939561

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

2024-06-29 09:09 AM

wolfi

GHSA-95PR-FXF5-86GV vulnerabilities

Vulnerabilities for packages: aactl, gitsign, spire-server, zot, melange, tekton-chains, policy-controller, falcoctl, falco, apko, flux-source-controller, kubescape, wolfictl, skaffold, vexctl, zarf, neuvector-sigstore-interface, slsa-verifier, tkn, ko,...

7.5AI Score

2024-06-29 09:08 AM

89

wolfi

CVE-2024-6104 vulnerabilities

Vulnerabilities for packages: aactl, gitlab-kas, buildkitd, gitsign, spire-server, actions-runner-controller, gh, zot, k3d, skopeo, terraform, bank-vaults, loki, tekton-chains, rekor, flux-kustomize-controller, keda, influxd, policy-controller, ksops, external-dns, k3s, terragrunt, falcoctl,...

6CVSS

6AI Score

0.0004EPSS

2024-06-29 09:08 AM

13

wolfi

GHSA-JQ35-85CJ-FJ4P vulnerabilities

Vulnerabilities for packages: aactl, bom, k3d, ctop, kpt, loki, tekton-chains, k3s, up, chartmuseum, falco, tekton-pipelines, paranoia, kubescape, scorecard, cert-manager, skaffold, prometheus, slsa-verifier,...

7.5AI Score

2024-06-29 09:08 AM

349

wolfi

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: gitlab-pages, prometheus-operator, actions-runner-controller, kube-bench, runc, aws-flb-kinesis, bank-vaults, crossplane-provider-gcp, tekton-chains, vertical-pod-autoscaler, kubernetes-dns-node-cache, cass-operator, hugo, kubewatch, chartmuseum, kargo, nats,...

7.5AI Score

2024-06-29 09:08 AM

184

wolfi

CVE-2023-46402 vulnerabilities

Vulnerabilities for packages: argo-cd, melange, pulumi-kubernetes-operator, argo-workflows,...

7.5CVSS

7.7AI Score

0.0005EPSS

2024-06-29 09:08 AM

320

wolfi

CVE-2024-3177 vulnerabilities

Vulnerabilities for packages: kubernetes-csi-driver-hostpath, kubernetes, ip-masq-agent, node-feature-discovery, nodetaint, cluster-autoscaler, local-static-provisioner, kubernetes-dns-node-cache, aws-ebs-csi-driver, spark-operator,...

2.7CVSS

4.3AI Score

0.0004EPSS

2024-06-29 09:08 AM

78

wolfi

GHSA-7WW5-4WQC-M92C vulnerabilities

Vulnerabilities for packages: zot, melange, k3d, ctop, fuse-overlayfs-snapshotter, eksctl, up, flux-helm-controller, telegraf, tekton-pipelines, helm, kaniko, flux-source-controller, cilium-cli, grype, kubescape, kubevela, kots, trivy, cert-manager, gitness, skaffold,...

7.5AI Score

2024-06-29 09:08 AM

222

wolfi

CVE-2024-0874 vulnerabilities

Vulnerabilities for packages: cloudflared, kubernetes-dns-node-cache,...

5.3CVSS

5.5AI Score

0.0004EPSS

2024-06-29 09:08 AM

48

wolfi

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: bom, yq, prometheus-operator, actions-runner-controller, kube-bench, runc, hey, aws-flb-kinesis, aws-flb-cloudwatch, vertical-pod-autoscaler, aws-flb-firehose, kubernetes-dns-node-cache, cass-operator, docker-credential-acr-env, nri-f5, kubewatch, gitlab-logger,...

7.8AI Score

0.0004EPSS

2024-06-29 09:08 AM

194

wolfi

CVE-2024-21626 vulnerabilities

Vulnerabilities for packages: buildkitd, zot, runc, k3d, skopeo, ctop, nvidia-device-plugin, k3s, telegraf, syft, kaniko, docker, kubernetes, datadog-agent, grype, k9s, kubescape, cadvisor, wolfictl, kots, trivy, skaffold, zarf, newrelic-infrastructure-agent, nerdctl,...

8.6CVSS

9.2AI Score

0.051EPSS

2024-06-29 09:08 AM

299

wolfi

CVE-2024-25620 vulnerabilities

Vulnerabilities for packages: cilium-cli, up, zarf, chartmuseum, flux-helm-controller, zot, istio-operator, flux-source-controller, helm-operator, k9s, k8sgpt, kubescape, kots, helm-push, trivy, cert-manager,...

6.4CVSS

6.7AI Score

0.0004EPSS

2024-06-29 09:08 AM

103

wolfi

GHSA-R53H-JV2G-VPX6 vulnerabilities

Vulnerabilities for packages: cilium-cli, up, zarf, chartmuseum, flux-helm-controller, zot, istio-operator, flux-source-controller, helm-operator, k9s, k8sgpt, kubescape, kots, helm-push, trivy, cert-manager,...

7.5AI Score

2024-06-29 09:08 AM

101

wolfi

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: bom, gitlab-pages, hey, hugo, kubewatch, gke-gcloud-auth-plugin, nats, wireguard-go, nri-prometheus, stakater-reloader, cluster-autoscaler, dynamic-localpv-provisioner, cilium-envoy, kubernetes-csi-external-attacher, pulumi, secrets-store-csi-driver,...

7.5CVSS

9AI Score

0.732EPSS

2024-06-29 09:08 AM

625

wolfi

GHSA-X84C-P2G9-RQV9 vulnerabilities

Vulnerabilities for packages: dagger, melange, grype, k3d, policy-controller, kaniko, harbor-scanner-trivy, cri-tools, buf, neuvector-scanner, prometheus, syft, wolfictl, tekton-pipelines, helm-push, docker,...

7.5AI Score

2024-06-29 09:08 AM

66

wolfi

GHSA-888H-RM2R-VRC7 vulnerabilities

Vulnerabilities for packages: kind, falco,...

7.5AI Score

2024-06-29 09:08 AM

86

wolfi

GHSA-2C7C-3MJ9-8FQH vulnerabilities

Vulnerabilities for packages: aactl, gitsign, spire-server, oauth2-proxy, tekton-chains, rekor, flux-kustomize-controller, keda, traefik, terragrunt, cloudflared, falco, tekton-pipelines, cilium-envoy, vault, flux-source-controller, fulcio, dex, kubescape, external-secrets-operator, kots,...

7.5AI Score

2024-06-29 09:08 AM

350

wolfi

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: gitlab-pages, yq, tekton-chains, aws-flb-firehose, cass-operator, kubewatch, stern, gke-gcloud-auth-plugin, kargo, nri-prometheus, timestamp-authority, tigera-operator, wire-go, cilium-cli, kubernetes-csi-external-attacher, task, paranoia, k8ssandra-operator, fq,...

6.8AI Score

0.0004EPSS

2024-06-29 09:08 AM

58

wolfi

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: bom, gitlab-pages, kube-bench, runc, hey, vertical-pod-autoscaler, bank-vaults, crossplane-provider-gcp, tekton-chains, kubernetes-dns-node-cache, docker-credential-acr-env, gobump, kubewatch, go-fips, stern, gke-gcloud-auth-plugin, chartmuseum, wireguard-go, ipfs,...

6.5AI Score

0.0004EPSS

2024-06-29 09:08 AM

22

wolfi

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: bom, gitlab-pages, kube-bench, runc, hey, vertical-pod-autoscaler, bank-vaults, crossplane-provider-gcp, tekton-chains, kubernetes-dns-node-cache, docker-credential-acr-env, gobump, kubewatch, go-fips, stern, gke-gcloud-auth-plugin, chartmuseum, wireguard-go, ipfs,...

7.5AI Score

2024-06-29 09:08 AM

16

wolfi

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: gitlab-pages, yq, tekton-chains, aws-flb-firehose, cass-operator, kubewatch, stern, gke-gcloud-auth-plugin, kargo, nri-prometheus, timestamp-authority, local-static-provisioner, wire-go, cilium-cli, kubernetes-csi-external-attacher, task, wave, paranoia,...

5.5CVSS

6.1AI Score

0.0004EPSS

2024-06-29 09:08 AM

26

wolfi

GHSA-V6V8-XJ6M-XWQH vulnerabilities

Vulnerabilities for packages: aactl, gitlab-kas, buildkitd, gitsign, spire-server, actions-runner-controller, gh, zot, k3d, skopeo, terraform, bank-vaults, loki, tekton-chains, rekor, flux-kustomize-controller, keda, influxd, policy-controller, ksops, external-dns, k3s, terragrunt, falcoctl,...

7.5AI Score

2024-06-29 09:08 AM

2

wolfi

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: aactl, sonobuoy, gosu, hey, gobuster, k3d, aws-flb-kinesis, aws-flb-cloudwatch, vertical-pod-autoscaler, ctop, docker-cli, aws-flb-firehose, cass-operator, gitlab-logger, gke-gcloud-auth-plugin, oras, protoc-gen-go-grpc, kind, nats, falco, dgraph, mage, petname,...

7.5CVSS

7.9AI Score

0.001EPSS

2024-06-29 09:08 AM

59

wolfi

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: bom, gitlab-pages, prometheus-operator, yq, runc, hey, vertical-pod-autoscaler, bank-vaults, hugo, kubewatch, gke-gcloud-auth-plugin, chartmuseum, wireguard-go, nri-prometheus, stakater-reloader, cluster-autoscaler, dynamic-localpv-provisioner, apko,...

6.1CVSS

7.3AI Score

0.001EPSS

2024-06-29 09:08 AM

94

wolfi

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: bom, gitlab-pages, actions-runner-controller, bank-vaults, tekton-chains, docker-credential-acr-env, hugo, kubewatch, nats, wireguard-go, cluster-autoscaler, dynamic-localpv-provisioner, apko, tigera-operator, tekton-pipelines, prometheus-mysqld-exporter, cilium-cli,.....

5.9CVSS

7.1AI Score

0.963EPSS

2024-06-29 09:08 AM

135

wolfi

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: aactl, bom, buildkitd, gitsign, zot, skopeo, ctop, cri-tools, loki, tekton-chains, traefik, policy-controller, eksctl, k3s, up, falcoctl, kargo, flux-helm-controller, falco, telegraf, k8sgpt, filebeat, crane, istio-pilot-agent, kubeflow-katib, tekton-pipelines, helm,.....

7.8CVSS

7.5AI Score

0.001EPSS

2024-06-29 09:08 AM

29

wolfi

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: gitlab-pages, prometheus-operator, actions-runner-controller, kube-bench, runc, aws-flb-kinesis, bank-vaults, crossplane-provider-gcp, tekton-chains, vertical-pod-autoscaler, kubernetes-dns-node-cache, cass-operator, hugo, kubewatch, chartmuseum, kargo, nats,...

6.6AI Score

0.0004EPSS

2024-06-29 09:08 AM

30

wolfi

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: bom, yq, prometheus-operator, actions-runner-controller, kube-bench, runc, hey, aws-flb-kinesis, aws-flb-cloudwatch, vertical-pod-autoscaler, aws-flb-firehose, kubernetes-dns-node-cache, cass-operator, docker-credential-acr-env, nri-f5, kubewatch, gitlab-logger,...

7.8AI Score

0.0004EPSS

2024-06-29 09:08 AM

42

wolfi

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: bom, yq, prometheus-operator, actions-runner-controller, kube-bench, runc, hey, aws-flb-kinesis, aws-flb-cloudwatch, vertical-pod-autoscaler, aws-flb-firehose, kubernetes-dns-node-cache, cass-operator, docker-credential-acr-env, nri-f5, kubewatch, gitlab-logger,...

7.5AI Score

2024-06-29 09:08 AM

28

wolfi

GHSA-753J-MPMX-QQ6G vulnerabilities

Vulnerabilities for packages: airflow, dask-gateway,...

7.5AI Score

2024-06-29 09:08 AM

2

wolfi

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: restic, buildkitd, prometheus-operator, spire-server, zot, py3-azure-identity, bank-vaults, fluent-bit-plugin-loki, loki, tekton-chains, rekor, flux-kustomize-controller, hugo, keda, traefik, policy-controller, ksops, external-dns, grafana-agent-operator, terragrunt,.....

5.5CVSS

6AI Score

0.0004EPSS

2024-06-29 09:08 AM

18

wolfi

GHSA-M5VV-6R4H-3VJ9 vulnerabilities

Vulnerabilities for packages: restic, buildkitd, prometheus-operator, spire-server, zot, py3-azure-identity, bank-vaults, fluent-bit-plugin-loki, loki, tekton-chains, rekor, flux-kustomize-controller, hugo, keda, traefik, policy-controller, ksops, external-dns, grafana-agent-operator, terragrunt,.....

7.5AI Score

2024-06-29 09:08 AM

7

wolfi

GHSA-3F2Q-6294-FMQ5 vulnerabilities

Vulnerabilities for packages: argo-cd, melange, pulumi-kubernetes-operator, argo-workflows,...

7.5AI Score

2024-06-29 09:08 AM

26

wolfi

CVE-2024-3651 vulnerabilities

Vulnerabilities for packages: dask-gateway, datadog-agent, kubeflow-pipelines, ggshield, confluent-docker-utils, kubeflow-jupyter-web-app, py3.10-tensorflow-core, kubeflow-volumes-web-app, py3-idna, kubeflow-pipelines-visualization-server, py3-cassandra-medusa, kubeflow-katib, k8s-sidecar,...

6.7AI Score

EPSS

2024-06-29 09:08 AM

26

wolfi

CVE-2024-32473 vulnerabilities

Vulnerabilities for packages: dagger, melange, grype, k3d, policy-controller, kaniko, harbor-scanner-trivy, cri-tools, buf, neuvector-scanner, prometheus, syft, wolfictl, tekton-pipelines, helm-push, docker,...

4.7CVSS

4.9AI Score

0.0004EPSS

2024-06-29 09:08 AM

8

wolfi

CVE-2023-45142 vulnerabilities

Vulnerabilities for packages: gitlab-kas, up, caddy, kubernetes, ipfs, prometheus-adapter, gatekeeper, prometheus, kubevela, keda, cert-manager, thanos, calico,...

7.5CVSS

7.9AI Score

0.001EPSS

2024-06-29 09:08 AM

51

wolfi

GHSA-RCJV-MGP8-QVMR vulnerabilities

Vulnerabilities for packages: gitlab-kas, up, caddy, kubernetes, ipfs, prometheus-adapter, gatekeeper, prometheus, kubevela, keda, cert-manager, thanos, calico,...

7.5AI Score

2024-06-29 09:08 AM

13

wolfi

GHSA-2HMF-46V7-V6FX vulnerabilities

Vulnerabilities for packages: dagger, zot, melange, guac,...

7.5AI Score

2024-06-29 09:08 AM

1

wolfi

GHSA-5M98-QGG9-WH84 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-29 09:08 AM

5

wolfi

CVE-2024-30251 vulnerabilities

Vulnerabilities for packages:...

7.5CVSS

7.8AI Score

0.0004EPSS

2024-06-29 09:08 AM

23

wolfi

CVE-2023-29403 vulnerabilities

Vulnerabilities for packages: kind, falco,...

7.8CVSS

9.2AI Score

0.001EPSS

2024-06-29 09:08 AM

15

wolfi

GHSA-F2CJ-5636-4J38 vulnerabilities

Vulnerabilities for packages: kind, falco,...

7.5AI Score

2024-06-29 09:08 AM

7

Total number of security vulnerabilities2775710