Every CVE whose affected-product data names Cloudark Kubeplus, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2026-29955 — CVSS 8.8 (high): The `/registercrd` endpoint in KubePlus 4.14 in the kubeconfiggenerator component is vulnerable to command injection. The component uses…
CVE-2026-29954 — CVSS 7.6 (high): In KubePlus 4.1.4, the mutating webhook and kubeconfiggenerator components have an SSRF vulnerability when processing the chartURL field of…