Vulnerability Library

search
ID
Packages
Summary
Affected versions
Published
Fix
GHSA-9766-5277-j5hr
  • Go/github.com/argoproj/argo-cd/v2
  • Go/github.com/argoproj/argo-cd
 ArgoCD Vulnerable to Use of Risky or Missing Cryptographic Algorithms in Redis Cache
  • See details.
 2024-05-21T18:07:09Z Fix available
GO-2024-2812
  • Go/github.com/jub0bs/fcors
 Some CORS middleware allow untrusted origins in github.com/jub0bs/fcors
  • See details.
 2024-05-21T15:08:01Z Fix available
GO-2024-2813
  • Go/github.com/jub0bs/cors
 Some CORS middleware allow untrusted origins in github.com/jub0bs/cors
  • See details.
 2024-05-21T15:08:01Z Fix available
GHSA-2j6r-9vv4-6gf5
  • Go/github.com/bincyber/go-sqlcrypter
 github.com/bincyber/go-sqlcrypter vulnerable to IV collision
  • See details.
 2024-05-20T21:56:07Z No fix available
GHSA-qjcv-rx3v-7mvj
  • Go/github.com/cosmos/ibc-go/v7
  • Go/github.com/cosmos/ibc-go/v6
  • Go/github.com/cosmos/ibc-go/v5
  • Go/github.com/cosmos/ibc-go/v4
  • Go/github.com/cosmos/ibc-go/v3
  • Go/github.com/cosmos/ibc-go/v2
  • Go/github.com/cosmos/ibc-go
 github.com/cosmos/ibc-go affected by IBC protocol "Huckleberry" vulnerability
  • See details.
 2024-05-20T21:51:33Z Fix available
GHSA-crgc-2583-rw27
  • Go/github.com/stacklok/minder
 Stacklok Minder vulnerable to denial of service from maliciously crafted templates
  • See details.
 2024-05-20T20:43:54Z Fix available
GHSA-xcq4-m2r3-cmrj
  • Go/github.com/aquasecurity/trivy
 Trivy possibly leaks registry credential when scanning images from malicious registries
  • See details.
 2024-05-20T20:36:53Z Fix available
GO-2024-2748
  • Go/k8s.io/apimachinery
  • Go/k8s.io/kubernetes
 Privilege Escalation in Kubernetes in k8s.io/apimachinery
  • See details.
 2024-05-20T19:46:32Z Fix available
GO-2024-2632
  • Go/github.com/lestrrat-go/jwx
  • Go/github.com/lestrrat-go/jwx/v2
 JWX vulnerable to a denial of service attack using compressed JWE message in github.com/lestrrat-go/jwx
  • See details.
 2024-05-20T19:46:23Z Fix available
GO-2024-2574
  • Go/github.com/gofiber/fiber/v2
 Insecure CORS Configuration allowing wildcard origin with credentials in github.com/gofiber/fiber/v2
  • See details.
 2024-05-20T19:46:13Z Fix available
GO-2024-2694
  • Go/github.com/cosmos/ibc-go
  • Go/github.com/cosmos/ibc-go/v2
  • Go/github.com/cosmos/ibc-go/v3
  • Go/github.com/cosmos/ibc-go/v4
  • Go/github.com/cosmos/ibc-go/v5
  • Go/github.com/cosmos/ibc-go/v6
  • Go/github.com/cosmos/ibc-go/v7
  • Go/github.com/cosmos/ibc-go/v8
 Potential Reentrancy using Timeout Callbacks in ibc-hooks in github.com/cosmos/ibc-go
  • See details.
 2024-05-20T19:46:03Z Fix available
GO-2024-2702
  • Go/github.com/flipped-aurora/gin-vue-admin/server
 Code injection vulnerability in github.com/flipped-aurora/gin-vue-admin/server
  • See details.
 2024-05-20T19:45:57Z Fix available
GO-2024-2842
  • Go/github.com/containers/image/v5
 Unexpected authenticated registry accesses in github.com/containers/image/v5
  • See details.
 2024-05-20T19:45:51Z Fix available
GO-2024-2864
  • Go/github.com/stacklok/minder
 Denial of service of Minder Server with attacker-controlled REST endpoint in github.com/stacklok/minder
  • See details.
 2024-05-20T16:07:13Z Fix available
GHSA-2rhx-qhxp-5jpw
  • Go/github.com/submariner-io/submariner-operator
 Submariner Operator sets unnecessary RBAC permissions in helm charts
  • See details.
 2024-05-17T15:31:10Z Fix available
GHSA-fjw8-3gp8-4cvx
  • Go/github.com/stacklok/minder
 Denial of service of Minder Server with attacker-controlled REST endpoint
  • See details.
 2024-05-16T17:44:39Z Fix available
Load more...