Vulnerabilities > Weave > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-14 | CVE-2023-34236 | Information Exposure vulnerability in Weave Gitops Terraform Controller 0.15.0 Weave GitOps Terraform Controller (aka Weave TF-controller) is a controller for Flux to reconcile Terraform resources in a GitOps way. | 6.5 |
| 2023-01-09 | CVE-2022-23509 | Cleartext Transmission of Sensitive Information vulnerability in Weave Gitops Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. | 6.0 |
| 2020-06-03 | CVE-2020-11091 | Reliance on Reverse DNS Resolution for a Security-Critical Action vulnerability in Weave NET In Weave Net before version 2.6.3, an attacker able to run a process as root in a container is able to respond to DNS requests from the host and thereby insert themselves as a fake service. | 5.8 |