Vulnerability Library

search
ID
Packages
Summary
Affected versions
Published
Fix
GHSA-x84c-p2g9-rqv9
  • Go/github.com/docker/docker
 IPv6 enabled on IPv4-only network interfaces
  • See details.
 2024-04-18T21:52:08Z Fix available
GHSA-6m9h-2pr2-9j8f
  • Go/github.com/1Panel-dev/1Panel
 1Panel's password verification is suspected to have a timing attack vulnerability
  • See details.
 2024-04-18T16:44:16Z Fix available
GHSA-q64h-39hv-4cf7
  • Go/github.com/hashicorp/go-getter
 HashiCorp go-getter Vulnerable to Argument Injection When Fetching Remote Default Git Branches
  • See details.
 2024-04-17T21:30:49Z Fix available
GHSA-m99c-q26r-m7m7
  • Go/github.com/evmos/evmos/v13/x/vesting
  • Go/github.com/evmos/evmos/v13
 Evmos vulnerable to unauthorized account creation with vesting module
  • See details.
 2024-04-17T17:37:23Z No fix available
GHSA-v6rw-hhgg-wc4x
  • Go/github.com/evmos/evmos/v11
 Evmos vulnerable to DOS and transaction fee expropiation through Authz exploit
  • See details.
 2024-04-17T17:35:21Z Fix available
GHSA-8cph-m685-6v6r
  • Go/github.com/openfga/openfga
 OpenFGA Authorization Bypass
  • See details.
 2024-04-16T22:57:58Z Fix available
GO-2024-2667
  • Go/github.com/argoproj/argo-cd/v2
 Out of memory crash from malicious Helm registry in github.com/argoproj/argo-cd/v2
  • See details.
 2024-04-16T18:16:39Z Fix available
GO-2024-2666
  • Go/github.com/cilium/cilium
 Insecure IPsec transparent encryption in github.com/cilium/cilium
  • See details.
 2024-04-16T17:25:46Z Fix available
GHSA-2gvw-w6fj-7m3c
  • Go/github.com/argoproj/argo-cd/v2
 Argo CD's API server does not enforce project sourceNamespaces
  • See details.
 2024-04-15T20:20:50Z Fix available
GHSA-7f4j-64p6-5h5v
  • Go/github.com/traefik/traefik/v2
  • Go/github.com/traefik/traefik/v3
 Traefik affected by HTTP/2 CONTINUATION flood in net/http
  • See details.
 2024-04-15T18:14:51Z Fix available
GHSA-g8fc-vrcg-8vjg
  • Go/github.com/edgelesssys/constellation/v2
 Constallation has pods exposed to peers in VPC
  • See details.
 2024-04-15T18:13:15Z Fix available
GHSA-4vwx-54mw-vqfw
  • Go/github.com/traefik/traefik/v3
  • Go/github.com/traefik/traefik/v2
  • Go/github.com/traefik/traefik
 Traefik vulnerable to denial of service with Content-length header
  • See details.
 2024-04-12T17:05:13Z Fix available
GHSA-g9qx-25vj-rf53
  • Go/github.com/apache/solr-operator
 Apache Solr Operator liveness and readiness probes may leak basic auth credentials
  • See details.
 2024-04-12T15:37:22Z Fix available
GHSA-c5rv-hjjc-jv7m
  • Go/github.com/tiagorlampert/CHAOS
 tiagorlampert CHAOS vulnerable to Cross Site Scripting
  • See details.
 2024-04-12T15:37:21Z No fix available
GHSA-p3j6-f45h-hw5f
  • Go/github.com/tiagorlampert/CHAOS
 tiagorlampert CHAOS vulnerable to command injections
  • See details.
 2024-04-12T06:33:24Z No fix available
GHSA-95pr-fxf5-86gv
  • Go/github.com/sigstore/cosign
  • Go/github.com/sigstore/cosign/v2
 Cosign malicious artifacts can cause machine-wide DoS
  • See details.
 2024-04-11T17:15:46Z Fix available
Load more...