F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, WebSafe Security Vulnerabilities
IBM is selling its QRadar product suite to Palo Alto Networks, for an undisclosed--but probably surprisingly small--sum. I have a personal connection to this. In 2016, IBM bought Resilient Systems, the startup I was a part of. It became part if IBM's cybersecurity offerings, mostly and weirdly...
7AI Score
In the Linux kernel, the following vulnerability has been resolved: mm: turn folio_test_hugetlb into a PageType The current folio_test_hugetlb() can be fooled by a concurrent folio split into returning true for a folio which has never belonged to hugetlbfs. This can't happen if the caller holds a.....
7.2AI Score
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
7.1AI Score
In the Linux kernel, the following vulnerability has been resolved: geneve: fix header validation in geneve[6]_xmit_skb syzbot is able to trigger an uninit-value in geneve_xmit() [1] Problem : While most ip tunnel helpers (like ip_tunnel_get_dsfield()) uses skb_protocol(skb, true),...
7.1AI Score
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Properly link new fs rules into the tree Previously, add_rule_fg would only add newly created rules from the handle into the tree when they had a refcount of 1. On the other hand, create_flow_handle tries hard to find...
7.3AI Score
In the Linux kernel, the following vulnerability has been resolved: drm/ast: Fix soft lockup There is a while-loop in ast_dp_set_on_off() that could lead to infinite-loop. This is because the register, VGACRI-Dx, checked in this API is a scratch register actually controlled by a MCU, named DPMCU,.....
7.1AI Score
CVE-2024-35993 mm: turn folio_test_hugetlb into a PageType
In the Linux kernel, the following vulnerability has been resolved: mm: turn folio_test_hugetlb into a PageType The current folio_test_hugetlb() can be fooled by a concurrent folio split into returning true for a folio which has never belonged to hugetlbfs. This can't happen if the caller holds a.....
7AI Score
CVE-2024-35984 i2c: smbus: fix NULL function pointer dereference
In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the designware controller as target only. Target-only modes break the assumption of one transfer function always being available. Fix this by...
7.1AI Score
CVE-2024-35973 geneve: fix header validation in geneve[6]_xmit_skb
In the Linux kernel, the following vulnerability has been resolved: geneve: fix header validation in geneve[6]_xmit_skb syzbot is able to trigger an uninit-value in geneve_xmit() [1] Problem : While most ip tunnel helpers (like ip_tunnel_get_dsfield()) uses skb_protocol(skb, true),...
7.1AI Score
CVE-2024-35960 net/mlx5: Properly link new fs rules into the tree
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Properly link new fs rules into the tree Previously, add_rule_fg would only add newly created rules from the handle into the tree when they had a refcount of 1. On the other hand, create_flow_handle tries hard to find...
7.3AI Score
CVE-2024-35952 drm/ast: Fix soft lockup
In the Linux kernel, the following vulnerability has been resolved: drm/ast: Fix soft lockup There is a while-loop in ast_dp_set_on_off() that could lead to infinite-loop. This is because the register, VGACRI-Dx, checked in this API is a scratch register actually controlled by a MCU, named DPMCU,.....
7.1AI Score
GHSA-95PR-FXF5-86GV vulnerabilities
Vulnerabilities for packages: aactl, policy-controller, skaffold, wolfictl, tkn, tekton-chains, falco, gitsign, melange, kubescape, zarf, goreleaser, flux-source-controller, slsa-verifier, zot, falcoctl, spire-server, apko,...
7.5AI Score
7.5AI Score
7.7AI Score
0.002EPSS
CVE-2023-46402 vulnerabilities
Vulnerabilities for packages: pulumi-kubernetes-operator, flux-notification-controller, melange, argo-workflows,...
7.7AI Score
0.0005EPSS
Vulnerabilities for packages: spark-operator, kubeflow-pipelines, nodetaint, aws-ebs-csi-driver, local-static-provisioner, kubernetes-csi-driver-hostpath, cluster-autoscaler, kubernetes-dns-node-cache, calico, kubernetes, ip-masq-agent,...
3.8AI Score
0.0004EPSS
GHSA-X84C-P2G9-RQV9 vulnerabilities
Vulnerabilities for packages: cri-tools, buf, harbor-scanner-trivy, kaniko, syft, k3d, wolfictl, grype, prometheus, policy-controller, melange, docker, helm-push, neuvector-scanner, docker-compose, tekton-pipelines,...
7.5AI Score
CVE-2024-21626 vulnerabilities
Vulnerabilities for packages: k3s, datadog-agent, cadvisor, skopeo, kots, skaffold, ingress-nginx-controller, runc, k3d, buildkitd, docker, wolfictl, ctop, newrelic-infrastructure-agent, trivy, kaniko, syft, nvidia-device-plugin, kubescape, kubernetes, telegraf, zarf, k9s, nerdctl, grype,...
7.5AI Score
0.051EPSS
GHSA-7WW5-4WQC-M92C vulnerabilities
Vulnerabilities for packages: gitness, kots, cilium-cli, skaffold, k3d, helm-push, ctop, newrelic-infrastructure-agent, trivy, kaniko, kubevela, melange, kubescape, telegraf, flux-helm-controller, tekton-pipelines, helm, flux-source-controller, fuse-overlayfs-snapshotter, eksctl, grype, zot,...
7.5AI Score
CVE-2024-25620 vulnerabilities
Vulnerabilities for packages: k9s, helm-operator, eksctl, istio-operator, zot, chartmuseum, kubescape, cert-manager, k8sgpt, cilium-cli, helm-push, kots, zarf, flux-helm-controller, trivy, up,...
6.5AI Score
0.0004EPSS
GHSA-R53H-JV2G-VPX6 vulnerabilities
Vulnerabilities for packages: k9s, helm-operator, eksctl, istio-operator, zot, chartmuseum, kubescape, cert-manager, k8sgpt, cilium-cli, helm-push, kots, zarf, flux-helm-controller, trivy, up,...
7.5AI Score
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: tctl, aactl, terraform, memcached-exporter, kubernetes-csi-livenessprobe, src, prometheus-stackdriver-exporter, istio-envoy, cue, oauth2-proxy, buildkitd, keda, pulumi, metacontroller, ollama, nginx-mainline, nvidia-device-plugin, prometheus, coredns, hugo, argo-cd,...
8.7AI Score
0.72EPSS
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: kyverno, aactl, flux-kustomize-controller, kots, istio-pilot-discovery, cosign, cilium-envoy, rekor, oauth2-proxy, keda, argo-workflows, vault, traefik, sops, terragrunt, tkn, tekton-chains, falco, gitsign, kubescape, cloudflared, external-secrets-operator,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: tctl, crossplane, kubernetes-csi-external-resizer, hugo-extended, aactl, nri-discovery-kubernetes, terraform, skopeo, memcached-exporter, kubernetes-csi-livenessprobe, crossplane-provider-aws, src, prometheus-stackdriver-exporter, cass-operator, istio-pilot-discovery,....
7.5AI Score
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: tctl, crossplane, kubernetes-csi-external-resizer, esbuild, nri-discovery-kubernetes, terraform, memcached-exporter, kubernetes-csi-livenessprobe, src, cass-operator, kyverno-policy-reporter-kyverno-plugin, cue, protoc-gen-go-grpc, supercronic, direnv, buildkitd,...
6.5AI Score
0.0004EPSS
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, esbuild, nri-discovery-kubernetes, kubernetes-csi-livenessprobe, prometheus-stackdriver-exporter, direnv, nri-nagios, pulumi, prometheus-pushgateway, k8sgpt, terragrunt, trivy, flyte, nri-mongodb, hello-world-golang,...
6.9AI Score
0.0004EPSS
GHSA-5FQ7-4MXC-535H vulnerabilities
Vulnerabilities for packages: crossplane, kubernetes-csi-external-resizer, aactl, skopeo, kubernetes-csi-livenessprobe, crossplane-provider-aws, src, wave, kyverno-policy-reporter-kyverno-plugin, guac, rekor, cue, harbor-scanner-trivy, oauth2-proxy, rclone, spegel, direnv, buildkitd,...
7.5AI Score
CVE-2024-24787 vulnerabilities
Vulnerabilities for packages: crossplane, kubernetes-csi-external-resizer, aactl, skopeo, kubernetes-csi-livenessprobe, crossplane-provider-aws, src, wave, kyverno-policy-reporter-kyverno-plugin, guac, rekor, cue, harbor-scanner-trivy, oauth2-proxy, rclone, spegel, direnv, buildkitd,...
6.6AI Score
0.0004EPSS
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: grpcurl, nsc, oras, hey, wait-for-port, aactl, nri-discovery-kubernetes, metrics-server, sonobuoy, dgraph, docker-cli, prometheus-stackdriver-exporter, cass-operator, kind, go-licenses, gops, cilium-envoy, gosu, protoc-gen-go-grpc, amass, k3d, cni-plugins,...
8.2AI Score
0.001EPSS
Vulnerabilities for packages: tctl, kubernetes-csi-external-resizer, aactl, terraform, memcached-exporter, kubernetes-csi-livenessprobe, crossplane-provider-aws, src, prometheus-stackdriver-exporter, cue, oauth2-proxy, buildkitd, keda, pulumi, prometheus-alertmanager, prometheus-pushgateway,...
6.5AI Score
0.001EPSS
CVE-2023-48795 vulnerabilities
Vulnerabilities for packages: nsc, crossplane, aactl, terraform, skopeo, memcached-exporter, crossplane-provider-aws, src, prometheus-stackdriver-exporter, istio-pilot-discovery, rekor, oauth2-proxy, istio-cni, buildkitd, pulumi, argo-workflows, prometheus-alertmanager, kyverno-policy-reporter,...
7AI Score
0.962EPSS
CVE-2024-24557 vulnerabilities
Vulnerabilities for packages: filebeat, k3s, datadog-agent, cadvisor, aactl, kyverno, skopeo, policy-controller, kubeflow-katib, kots, skaffold, flux-image-reflector-controller, istio-pilot-discovery, dagger, cosign, guac, bom, istio-pilot-agent, buildkitd, docker-credential-gcr, pulumi,...
7.8AI Score
0.001EPSS
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: tctl, crossplane, kubernetes-csi-external-resizer, hugo-extended, aactl, nri-discovery-kubernetes, terraform, skopeo, memcached-exporter, kubernetes-csi-livenessprobe, crossplane-provider-aws, src, prometheus-stackdriver-exporter, cass-operator, istio-pilot-discovery,....
6.6AI Score
0.0004EPSS
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: tctl, crossplane, kubernetes-csi-external-resizer, esbuild, nri-discovery-kubernetes, terraform, memcached-exporter, kubernetes-csi-livenessprobe, src, cass-operator, kyverno-policy-reporter-kyverno-plugin, cue, protoc-gen-go-grpc, supercronic, direnv, buildkitd,...
7.5AI Score
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: tctl, crossplane, kubernetes-csi-external-resizer, esbuild, nri-discovery-kubernetes, terraform, memcached-exporter, kubernetes-csi-livenessprobe, src, cass-operator, kyverno-policy-reporter-kyverno-plugin, cue, protoc-gen-go-grpc, supercronic, direnv, buildkitd,...
6.5AI Score
0.0004EPSS
GHSA-3F2Q-6294-FMQ5 vulnerabilities
Vulnerabilities for packages: pulumi-kubernetes-operator, flux-notification-controller, melange, argo-workflows,...
7.5AI Score
CVE-2024-32473 vulnerabilities
Vulnerabilities for packages: cri-tools, buf, harbor-scanner-trivy, kaniko, syft, k3d, wolfictl, grype, prometheus, policy-controller, melange, docker, helm-push, neuvector-scanner, docker-compose, tekton-pipelines,...
5AI Score
0.0004EPSS
7.5AI Score
9AI Score
0.001EPSS
7.5AI Score
GHSA-88JX-383Q-W4QC vulnerabilities
Vulnerabilities for packages: aactl, policy-controller, skaffold, wolfictl, tkn, tekton-chains, falco, gitsign, melange, kubescape, zarf, goreleaser, flux-source-controller, slsa-verifier, zot, falcoctl, spire-server, apko,...
7.5AI Score
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-resizer, esbuild, nri-discovery-kubernetes, kubernetes-csi-livenessprobe, prometheus-stackdriver-exporter, direnv, nri-nagios, pulumi, prometheus-pushgateway, k8sgpt, terragrunt, trivy, flyte, nri-mongodb, hello-world-golang,...
7.5AI Score
9.8AI Score
0.002EPSS
CVE-2023-46737 vulnerabilities
Vulnerabilities for packages: tekton-chains, tkn, falco, slsa-verifier, aactl, policy-controller, melange, kubescape, skaffold, spire-server, apko, ko,...
5.4AI Score
0.0005EPSS
GHSA-VFP6-JRW2-99G9 vulnerabilities
Vulnerabilities for packages: tekton-chains, tkn, falco, slsa-verifier, aactl, policy-controller, melange, kubescape, skaffold, spire-server, apko, ko,...
7.5AI Score
GHSA-C5Q2-7R4C-MV6G vulnerabilities
Vulnerabilities for packages: kyverno, aactl, skopeo, flux-kustomize-controller, policy-controller, timestamp-authority, rook, grpc-health-probe, kots, skaffold, rabbitmq-messaging-topology-operator, frp, istio-pilot-discovery, cosign, guac, ko, rekor, oauth2-proxy, istio-cni,...
7.5AI Score
GHSA-9763-4F94-GFCH vulnerabilities
Vulnerabilities for packages: pulumi-language-dotnet, crossplane, gitness, aactl, terraform-provider-google, flux-kustomize-controller, policy-controller, skaffold, crossplane-provider-aws, cosign, boring-registry, pulumi-kubernetes-operator, rclone, flux-notification-controller, keda, pulumi,...
7.5AI Score
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: tctl, crossplane, kubernetes-csi-external-resizer, esbuild, nri-discovery-kubernetes, terraform, memcached-exporter, kubernetes-csi-livenessprobe, src, cass-operator, kyverno-policy-reporter-kyverno-plugin, cue, protoc-gen-go-grpc, supercronic, direnv, buildkitd,...
7.5AI Score
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: tctl, crossplane, kubernetes-csi-external-resizer, esbuild, nri-discovery-kubernetes, terraform, memcached-exporter, kubernetes-csi-livenessprobe, src, cass-operator, kyverno-policy-reporter-kyverno-plugin, cue, protoc-gen-go-grpc, supercronic, direnv, buildkitd,...
7.5AI Score
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: tctl, crossplane, kubernetes-csi-external-resizer, esbuild, nri-discovery-kubernetes, terraform, memcached-exporter, kubernetes-csi-livenessprobe, src, cass-operator, kyverno-policy-reporter-kyverno-plugin, cue, protoc-gen-go-grpc, supercronic, direnv, buildkitd,...
7.5AI Score