github.com/layer5io/meshery (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/layer5io/meshery, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2023-46575 — CVSS 9.8 (critical): A SQL injection vulnerability exists in Meshery prior to version v0.6.179, enabling a remote attacker to retrieve sensitive information and…
CVE-2024-29031 — CVSS 7.5 (high): Meshery is an open source, cloud native manager that enables the design and management of Kubernetes-based infrastructure and applications…
CVE-2024-35181 — CVSS 5.9 (medium): Meshery is an open source, cloud native manager that enables the design and management of Kubernetes-based infrastructure and applications…
CVE-2024-35182 — CVSS 5.9 (medium): Meshery is an open source, cloud native manager that enables the design and management of Kubernetes-based infrastructure and applications…