VYPR

apk package

chainguard/kyverno-cli-fips-1.17

pkg:apk/chainguard/kyverno-cli-fips-1.17

Vulnerabilities (62)

  • CVE-2025-15558Mar 4, 2026
    affected < 1.17.1-r4fixed 1.17.1-r4

    Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exist by default. A low-privileged attacker can create this directory and place malicious CLI plugin binaries (docker-compose.exe, docker-buildx.exe, etc.) that are

  • CVE-2026-24051HigFeb 2, 2026
    affected < 1.17.1-r2fixed 1.17.1-r2

    OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system comman

Page 4 of 4