Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2025-1508
  • RubyGems/komojuu
Malicious code in komojuu (RubyGems) 1 hour ago
  • No fix available
DSA-5869-1
  • Debian:12/chromium
chromium - security update 9 hours ago
  • Fix available
CGA-2chr-2w27-9rx5
  • Chainguard/mattermost-10.5
  • Wolfi/mattermost-10.5
  • Chainguard/mattermost-10.5-compat
  • Wolfi/mattermost-10.5-compat
See record for full details 9 hours ago
  • Fix available
GHSA-pp9m-qf39-hxjc
  • Go/github.com/oxyno-zeta/s3-proxy/cmd/s3-proxy
S3-Proxy allows Reflected Cross-site Scripting (XSS) in template implementation 10 hours ago
  • No fix available
  • Severity - 8.4 (High)
CGA-3vm3-626v-4449
  • Chainguard/wildfly
  • Wolfi/wildfly
  • Chainguard/wildfly-openjdk-17
  • Wolfi/wildfly-openjdk-17
  • Chainguard/wildfly-openjdk-17-compat
  • Wolfi/wildfly-openjdk-17-compat
  • Chainguard/wildfly-openjdk-21
  • Wolfi/wildfly-openjdk-21
  • Chainguard/wildfly-openjdk-21-compat
  • Wolfi/wildfly-openjdk-21-compat
See record for full details 11 hours ago
  • Fix available
CGA-j9w9-457f-3v67
  • Chainguard/wildfly
  • Wolfi/wildfly
  • Chainguard/wildfly-openjdk-17
  • Wolfi/wildfly-openjdk-17
  • Chainguard/wildfly-openjdk-17-compat
  • Wolfi/wildfly-openjdk-17-compat
  • Chainguard/wildfly-openjdk-21
  • Wolfi/wildfly-openjdk-21
  • Chainguard/wildfly-openjdk-21-compat
  • Wolfi/wildfly-openjdk-21-compat
See record for full details 11 hours ago
  • Fix available
MAL-2025-1507
  • npm/myconfusedfunctionpoctestpackage
Malicious code in myconfusedfunctionpoctestpackage (npm) 11 hours ago
  • No fix available
GHSA-f8qm-hmm3-fv7f
  • crates.io/namada-apps
Namada-apps allows Excessive Computation in Mempool Validation 12 hours ago
  • Fix available
  • Severity - 9.2 (Critical)
GHSA-82vg-5v4f-f9wq
  • crates.io/namada-apps
Namada-apps can Crash with Excessive Computation in Mempool Validation 12 hours ago
  • Fix available
  • Severity - 9.2 (Critical)
GHSA-2gw2-qgjg-xh6p
  • crates.io/namada-apps
Namada-apps allows Post-Genesis Validator Bypass 12 hours ago
  • Fix available
GHSA-x5vx-95h7-rv4p
  • Go/github.com/cosmos/cosmos-sdk
Cosmos SDK: Groups module can halt chain when handling a malicious proposal 12 hours ago
  • Fix available
  • Severity - 8.7 (High)
GHSA-j3mm-wmfm-mwvh
  • npm/@ckeditor/ckeditor5-real-time-collaboration
  • npm/ckeditor5-premium-features
Cross-site scripting (XSS) in the CKEditor 5 real-time collaboration package 12 hours ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-rr6p-3pfg-562j
  • Maven/org.xwiki.platform:xwiki-platform-search-solr-ui
XWiki Platform allows remote code execution as guest via SolrSearchMacros request 12 hours ago
  • Fix available
  • Severity - 9.8 (Critical)
CGA-mvp6-58cw-6vmr
  • Chainguard/kubernetes-fips-1.30
  • Chainguard/kube-apiserver-fips-1.30
  • Chainguard/kube-apiserver-fips-1.30-default
  • Chainguard/kube-controller-manager-fips-1.30
  • Chainguard/kube-controller-manager-fips-1.30-default
  • Chainguard/kube-proxy-fips-1.30
  • Chainguard/kube-proxy-fips-1.30-default
  • Chainguard/kube-scheduler-fips-1.30
  • Chainguard/kube-scheduler-fips-1.30-default
  • Chainguard/kubeadm-fips-1.30
  • Chainguard/kubeadm-fips-1.30-default
  • Chainguard/kubectl-bash-completion-fips-1.30
  • Chainguard/kubectl-fips-1.30
  • Chainguard/kubectl-fips-1.30-default
  • Chainguard/kubelet-fips-1.30
  • Chainguard/kubelet-fips-1.30-default
  • Chainguard/kubernetes-fips-1.30-default
See record for full details 13 hours ago
  • Fix available
CGA-mgqg-qx34-wqc5
  • Chainguard/node-feature-discovery-0.16
See record for full details 13 hours ago
  • Fix available
BIT-cassandra-2024-27137
  • Bitnami/cassandra
See record for full details 13 hours ago
  • Fix available