CLEANSTART-2026-SH14815

Import Source

https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-SH14815.json

JSON Data

https://api.osv.dev/v1/vulns/CLEANSTART-2026-SH14815

Upstream

CVE-2025-15558

CVE-2025-61729

CVE-2026-23831

CVE-2026-23991

CVE-2026-23992

CVE-2026-24051

CVE-2026-24137

CVE-2026-25679

CVE-2026-26958

CVE-2026-27142

CVE-2026-33186

ghsa-273p-m2cw-6833

ghsa-4c4x-jm2x-pf9j

ghsa-4qg8-fj49-pxjh

ghsa-846p-jg2w-w324

ghsa-f83f-xpx7-ffpw

ghsa-fcv2-xgw5-pqxf

ghsa-fphv-w9fq-2525

ghsa-jqc5-w2xx-5vq4

ghsa-mqqf-5wvp-8fh8

Published

2026-04-10T01:00:28.709879Z

Modified

2026-05-28T22:15:41.245142200Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

gRPC-Go is the Go language implementation of gRPC

Details

Multiple security vulnerabilities affect the tkn-fips package. gRPC-Go is the Go language implementation of gRPC. See references for individual vulnerability details.

References

Affected packages

CleanStart / tkn-fips

Package

Name: tkn-fips

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.43.0-r4

Database specific

source

"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-SH14815.json"