Fluxcd Flux2

6 CVEs affecting Fluxcd Flux2. Latest disclosed: 2022-10-22. Critical: 2, High: 3.

Top CVEs affecting Fluxcd Flux2
CVESeverityScorePublishedSummary
CVE-2022-24877Critical9.92022-05-06Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious `kustomization.yaml` all…
CVE-2022-24817Critical9.92022-05-06Flux2 is an open and extensible continuous delivery solution for Kubernetes. Flux2 versions between 0.1.0 and 0.29.0, helm-controller 0.1.0 to v0.19.0, and kus…
CVE-2022-36049High7.72022-09-07Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to d…
CVE-2022-36035High7.72022-08-31Flux is a tool for keeping Kubernetes clusters in sync with sources of configuration (like Git repositories), and automating updates to configuration when ther…
CVE-2022-24878High7.72022-05-06Flux is an open and extensible continuous delivery solution for Kubernetes. Path Traversal in the kustomize-controller via a malicious `kustomization.yaml` all…
CVE-2022-39272Medium5.02022-10-22Flux is an open and extensible continuous delivery solution for Kubernetes. Versions prior to 0.35.0 are subject to a Denial of Service. Users that have permis…