VDB
CGA-8qwg-3gv7-2fp3
CGA-8qwg-3gv7-2fp3
PUBLISHED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chainguard | contour-1.33 | 0, 0, 0 |
| Chainguard | knative-eventing-fips-1.21-mtchannel-broker | 0, 0, 0 |
| Chainguard | crossplane-provider-aws-ec2 | 0, 0, 0 |
| Chainguard | knative-serving-1.20-activator | 0, 0, 0 |
| Chainguard | kube-proxy-1.35 | 0, 0, 0 |
| Wolfi | kuma-install-cni-2.13 | 0, 0, 0 |
| Chainguard | knative-serving-1.21-controller | 0, 0, 0 |
| Chainguard | node-feature-discovery-fips-0.18-topology-updater | 0, 0, 0 |
| Chainguard | argo-workflow-controller-fips-3.7 | 0, 0, 0 |
| Chainguard | flux-fips-2.8 | 0, 0, 0 |
| Chainguard | crossplane-provider-aws-rds-fips | 0, 0, 0 |
| Wolfi | mattermost-10.11 | 0, 0, 0 |
| Chainguard | istio-pilot-discovery-1.27 | 0, 0, 0 |
| Chainguard | dkron-fips-executor-gcppubsub | 0, 0, 0 |
| Chainguard | calico-typhad-fips-3.30 | 0, 0, 0 |
| Chainguard | flux-image-reflector-controller-fips | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-fips-trillian-createtree | 0, 0, 0 |
| Chainguard | backup-restore-operator-fips-9.0 | 0, 0, 0 |
| Wolfi | cluster-api-1.12-kubeadm-control-plane-controller | 0, 0, 0 |
| Wolfi | opa | 0, 0, 0 |
…and 3051 more
Exploit Intelligence
- gRPC-Go RBAC Authorization Policy Bypass via Missing `:path` Slash (Auth Bypass) (github-poc-repo)
- gRPC-Go RBAC Authorization Policy Bypass via Missing `:path` Slash (Auth Bypass) (github-poc)
- Kubernetes.clusterctl.locale.en-US.yaml (github-poc)
- changelog.yaml (github-poc)
- GO-2026-4762.json (github-poc)
- CHANGELOG-v1.75.3.yml (github-poc)
- CHANGELOG-v1.75.2.yml (github-poc)
- CHANGELOG-v1.75.4.yml (github-poc)
- .trivyignore.image.yaml (github-poc)
- v1.7.3.yaml (github-poc)
…and 14 more exploits
Timeline
- Mar 19, 2026 CVE Published
- May 15, 2026 CVE Updated