Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 15 SP4 package trivy, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2022-1996 — CVSS 9.1 (critical): Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.
CVE-2022-23648 — CVSS 7.5 (high): containerd is a container runtime available as a daemon for Linux and Windows. A bug was found in containerd prior to versions 1.6.1…
CVE-2022-28946 — CVSS 7.5 (high): An issue in the component ast/parser.go of Open Policy Agent v0.39.0 causes the application to incorrectly interpret every expression…
CVE-2023-25165 — CVSS 4.3 (medium): Helm is a tool that streamlines installing and managing Kubernetes applications.`getHostByName` is a Helm template function introduced in…