Linuxfoundation Tekton Pipelines — known CVE vulnerabilities
Every CVE whose affected-product data names Linuxfoundation Tekton Pipelines, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2026-33211 — CVSS 9.6 (critical): Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions…
CVE-2026-40161 — CVSS 7.7 (high): Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions…
CVE-2026-40938 — CVSS 7.5 (high): Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions…
CVE-2026-25542 — CVSS 6.5 (medium): Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 0.43.0 and prior to versions…
CVE-2026-40924 — CVSS 6.5 (medium): Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions…
CVE-2026-40923 — CVSS 5.4 (medium): Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions…
CVE-2023-37264 — CVSS 3.7 (low): Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 0.35.0, pipelines do not…