Msrc Cbl2 Cert-Manager 1.11.2-22 On Cbl Mariner 2.0 vulnerabilities

4 known vulnerabilities affecting msrc/cbl2_cert-manager_1.11.2-22_on_cbl_mariner_2.0.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2024-12401MEDIUMCVSS 4.42024-12-10
CVE-2024-12401 [MEDIUM] CWE-20 Cert-manager: potential dos when parsing specially crafted pem inputs Cert-manager: potential dos when parsing specially crafted pem inputs FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open
msrc
CVE-2024-26147HIGHCVSS 7.52024-02-13
CVE-2024-26147 [HIGH] CWE-908 Helm's Missing YAML Content Leads To Panic Helm's Missing YAML Content Leads To Panic FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Mic
msrc
CVE-2024-25620MEDIUMCVSS 6.42024-02-13
CVE-2024-25620 [MEDIUM] CWE-22 Dependency management path traversal in helm Dependency management path traversal in helm FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed
msrc
CVE-2023-6337HIGHCVSS 7.52023-12-12
CVE-2023-6337 [HIGH] CWE-770 Vault May be Vulnerable to a Denial of Service Through Memory Exhaustion When Handling Large HTTP Requests Vault May be Vulnerable to a Denial of Service Through Memory Exhaustion When Handling Large HTTP Requests FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep
msrc