[go: up one dir, main page]

Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-p8hw-rfjg-689h
  • Go/github.com/canonical/lxd
 Canonical LXD CSRF Vulnerability When Using Client Certificate Authentication with the LXD-UI 02 Oct
  • Fix available
  • Severity - 7.5 (High)
GHSA-w2hg-2v4p-vmh6
  • Go/github.com/lxc/lxd
 Canonical LXD Arbitrary File Read via Template Injection in Snapshot Patterns 02 Oct
  • Fix available
  • Severity - 7.1 (High)
GHSA-7232-97c6-j525
  • Go/github.com/canonical/lxd
 Canonical LXD Source Container Identification Vulnerability via cmdline Spoofing in devLXD Server 02 Oct
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-3g72-chj4-2228
  • Go/github.com/canonical/lxd
 Canonical LXD Vulnerable to Privilege Escalation via WebSocket Connection Hijacking in Operations API 02 Oct
  • Fix available
  • Severity - 7.4 (High)
GHSA-p3x5-mvmp-5f35
  • Go/github.com/canonical/lxd
 Canonical LXD Project Existence Determination Through Error Handling in Image Export Function 02 Oct
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-472f-vmf2-pr3h
  • Go/github.com/canonical/lxd
 Canonical LXD Path Traversal Vulnerability in Instance Log File Retrieval Function 02 Oct
  • Fix available
  • Severity - 7.1 (High)
GHSA-xch9-h8qw-85c7
  • Go/github.com/canonical/lxd
 Canonical LXD Project Existence Determination Through Error Handling in Image Get Function 02 Oct
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-qwvm-wqq8-8j69
  • Go/github.com/MANTRA-Chain/mantrachain/v4
  • Go/github.com/MANTRA-Chain/mantrachain/v3
  • Go/github.com/MANTRA-Chain/mantrachain/v2
  • Go/github.com/MANTRA-Chain/mantrachain
 github.com/MANTRA-Chain/mantrachain/x/tokenfactory tx gas limit is not enforced in send hooks 30 Sep
  • Fix available
  • Severity - 8.8 (High)
GHSA-gpx4-37g2-c8pv
  • Go/github.com/argoproj/argo-cd/v2
  • Go/github.com/argoproj/argo-cd/v3
 Argo CD Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook 30 Sep
  • Fix available
  • Severity - 7.5 (High)
GHSA-wp4p-9pxh-cgx2
  • Go/github.com/argoproj/argo-cd
  • Go/github.com/argoproj/argo-cd/v2
  • Go/github.com/argoproj/argo-cd/v3
 argo-cd vulnerable unauthenticated DoS via malformed Gogs webhook payload 30 Sep
  • Fix available
  • Severity - 7.5 (High)
GHSA-f9gq-prrc-hrhc
  • Go/github.com/argoproj/argo-cd
  • Go/github.com/argoproj/argo-cd/v2
  • Go/github.com/argoproj/argo-cd/v3
 Unauthenticated argocd-server panic via a malicious Bitbucket-Server webhook payload 30 Sep
  • Fix available
  • Severity - 7.5 (High)
GHSA-g88p-r42r-ppp9
  • Go/github.com/argoproj/argo-cd/v2
  • Go/github.com/argoproj/argo-cd/v3
 Repository Credentials Race Condition Crashes Argo CD Server 30 Sep
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-w64r-2g3w-w8w4
  • Go/github.com/coder/agentapi
 Coder AgentAPI exposed user chat history via a DNS rebinding attack 29 Sep
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-g99p-47x7-mq88
  • Go/github.com/filecoin-project/go-f3
 go-f3 module vulnerable to integer overflow leading to panic 29 Sep
  • Fix available
  • Severity - 7.5 (High)
GHSA-7pq9-rf9p-wcrf
  • Go/github.com/filecoin-project/go-f3
 go-f3 Vulnerable to Cached Justification Verification Bypass 29 Sep
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-wpwj-69cm-q9c5
  • Go/github.com/wneessen/go-mail
 go-mail has insufficient address encoding when passing mail addresses to the SMTP client 29 Sep
  • Fix available
  • Severity - 8.2 (High)
Load more...