Vulnerabilities > Linuxfoundation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-26 | CVE-2023-30841 | Cleartext Transmission of Sensitive Information vulnerability in Linuxfoundation Baremetal Operator Baremetal Operator (BMO) is a bare metal host provisioning integration for Kubernetes. | 5.5 |
| 2023-04-24 | CVE-2023-2250 | Unspecified vulnerability in Linuxfoundation Open Cluster Management A flaw was found in the Open Cluster Management (OCM) when a user have access to the worker nodes which has the cluster-manager-registration-controller or cluster-manager deployments. | 6.7 |
| 2023-04-19 | CVE-2023-22645 | Unspecified vulnerability in Linuxfoundation Kubewarden-Controller An Improper Privilege Management vulnerability in SUSE kubewarden allows attackers to read arbitrary secrets if they get access to the ServiceAccount kubewarden-controller This issue affects: SUSE kubewarden kubewarden-controller versions prior to 1.6.0. | 8.8 |
| 2023-04-14 | CVE-2023-29018 | Unspecified vulnerability in Linuxfoundation Openfeature The OpenFeature Operator allows users to expose feature flags to applications. | 8.8 |
| 2023-04-14 | CVE-2023-29194 | Unspecified vulnerability in Linuxfoundation Vitess Vitess is a database clustering system for horizontal scaling of MySQL. | 2.7 |
| 2023-04-12 | CVE-2023-30512 | Incorrect Permission Assignment for Critical Resource vulnerability in Linuxfoundation Cubefs CubeFS through 3.2.1 allows Kubernetes cluster-level privilege escalation. | 6.5 |
| 2023-03-29 | CVE-2023-25809 | Unspecified vulnerability in Linuxfoundation Runc runc is a CLI tool for spawning and running containers according to the OCI specification. | 6.3 |
| 2023-03-29 | CVE-2023-28642 | Link Following vulnerability in Linuxfoundation Runc runc is a CLI tool for spawning and running containers according to the OCI specification. | 7.8 |
| 2023-03-27 | CVE-2022-41354 | Information Exposure Through Discrepancy vulnerability in Linuxfoundation Argo-Cd An access control issue in Argo CD v2.4.12 and below allows unauthenticated attackers to enumerate existing applications. | 4.3 |
| 2023-03-03 | CVE-2023-27561 | Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. | 7.0 |