Every CVE whose affected-product data names Weave Gitops Tools, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-35975 — CVSS 9.0 (critical): The GitOps Tools Extension for VSCode can make it easier to manage Flux objects. A specially crafted Flux object may allow for remote code…
CVE-2022-35976 — CVSS 5.2 (medium): The GitOps Tools Extension for VSCode relies on kubeconfigs in order to communicate with Kubernetes clusters. A specially crafted…