fluxcd Summary
Latest vulnerabilities published by fluxcd
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Unauthenticated Reconciliation Trigger in Flux Notification-Controller by Weakened OIDC Token Validation
CVE-2026-40109FluxcdNotification-controller3.1LOWPrivilege Escalation Vulnerability in Flux Operator for Kubernetes
CVE-2026-23990Controlplaneio-fl...Flux-operator5.3MEDIUMKubernetes Source-Controller Vulnerability: Token Logging Exposes Azure Blob Storage to Attack
CVE-2024-31216FluxcdSource-controller5.1MEDIUMFlux2 vulnerable to Denial of Service due to Improper use of metav1.Duration
CVE-2022-39272FluxcdFlux25MEDIUMFlux2 Helm Controller denial of service
CVE-2022-36049FluxcdFlux27.7HIGHFlux CLI Workload Injection
CVE-2022-36035FluxcdFlux27.7HIGHImproper path handling in Kustomization files allows for denial of service
CVE-2022-24878FluxcdFlux27.7HIGHImproper path handling in kustomization files allows path traversal
CVE-2022-24877FluxcdFlux29.9CRITICALImproper kubeconfig validation allows arbitrary code execution
CVE-2022-24817FluxcdFlux29.9CRITICALPrivilege escalation to cluster admin on multi-tenant environments
CVE-2021-41254FluxcdKustomize-controller8.8HIGH