OSV - Open Source Vulnerabilities

GHSA-7j7j-66cv-m239

Go/github.com/zitadel/zitadel

ZITADEL's Improper Lockout Mechanism Leads to MFA Bypass

See details.

2024-04-25T18:31:31Z

Fix available

GHSA-m9w6-wp3h-vq8g

Go/github.com/coredns/coredns

CoreDNS may return invalid cache entries

See details.

2024-04-25T18:30:39Z

Fix available

GHSA-x5m7-63c6-fx79

Go/github.com/openshift/cluster-monitoring-operator

Cluster Monitoring Operator contains a credentials leak

See details.

2024-04-25T18:30:39Z

No fix available

GHSA-c3wv-qmjj-45r6

Go/github.com/containers/podman/v2

Information disclosure in podman

See details.

2024-04-24T21:42:22Z

Fix available

GHSA-6g56-v9qg-jp92

Go/github.com/heketi/heketi

Heketi Arbitrary Code Execution

See details.

2024-04-24T21:35:47Z

Fix available

GHSA-f9xf-jq4j-vqw4

Go/github.com/rancher/rancher

Rancher does not properly specify ApiGroup when creating Kubernetes RBAC resources

See details.

2024-04-24T21:02:01Z

Fix available

GHSA-pvxj-25m6-7vqr

Go/github.com/rancher/rancher

Rancher Privilege escalation vulnerability via malicious "Connection" header

See details.

2024-04-24T21:01:59Z

Fix available

GHSA-gvh9-xgrq-r8hw

Go/github.com/rancher/rancher

Rancher's Steve API Component Improper authorization check allows privilege escalation

See details.

2024-04-24T21:01:53Z

Fix available

GHSA-28g7-896h-695v

Go/github.com/rancher/rancher

Rancher's Failure to delete orphaned role bindings does not revoke project level access from group based authentication

See details.

2024-04-24T21:01:50Z

Fix available

GHSA-r7h7-chh4-5rvm

Go/github.com/go-gitea/gitea

Improper Access Control in Gitea

See details.

2024-04-24T20:56:53Z

Fix available

GHSA-9f8c-pfvv-p4gm

Go/github.com/go-gitea/gitea

Buffer Overflow in gitea

See details.

2024-04-24T20:56:50Z

Fix available

GHSA-828r-r2c8-rfw3

Go/kubevirt.io/kubevirt

Privilege Escalation in kubevirt

See details.

2024-04-24T20:54:37Z

Fix available

GHSA-r76g-g87f-vw8f

Go/k8s.io/kubernetes/cmd/kubelet

Kubelet Incorrect Privilege Assignment

See details.

2024-04-24T20:03:48Z

Fix available

GHSA-5xfg-wv98-264m

Go/github.com/kubernetes/kubernetes

Sensitive Information leak via Log File in Kubernetes

See details.

2024-04-24T20:02:20Z

Fix available

GHSA-5x96-j797-5qqw

Go/github.com/kubernetes/kubernetes

Sensitive Information leak via Log File in Kubernetes

See details.

2024-04-24T20:02:08Z

Fix available

GHSA-r23h-3jmw-q7hr

Go/github.com/ipfs/go-ipfs

Access Restriction Bypass in go-ipfs

See details.

2024-04-24T20:01:46Z

Fix available

Vulnerability Library