Skip to main content

Crossplane

3 CVEs product

Monthly

CVE-2023-38495 Go CRITICAL POC PATCH Act Now

Crossplane is a framework for building cloud native control planes without needing to write code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Crossplane
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-37900 Go LOW POC PATCH Monitor

Crossplane is a framework for building cloud native control planes without needing to write code. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Crossplane
NVD GitHub
CVSS 3.1
2.7
EPSS
0.5%
CVE-2023-27484 Go MEDIUM PATCH This Month

crossplane-runtime is a set of go libraries used to build Kubernetes controllers in Crossplane and its related stacks. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Kubernetes Information Disclosure Crossplane
NVD GitHub
CVSS 3.1
4.9
EPSS
0.7%
EPSS 1% CVSS 9.8
CRITICAL POC PATCH Act Now

Crossplane is a framework for building cloud native control planes without needing to write code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Crossplane
NVD GitHub
EPSS 1% CVSS 2.7
LOW POC PATCH Monitor

Crossplane is a framework for building cloud native control planes without needing to write code. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Crossplane
NVD GitHub
EPSS 1% CVSS 4.9
MEDIUM PATCH This Month

crossplane-runtime is a set of go libraries used to build Kubernetes controllers in Crossplane and its related stacks. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Kubernetes Information Disclosure Crossplane
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy