Weave GitOps

Source repositories

CVE	Vendor / Product	CVSS	Published	Description
CVE-2022-23509	Weaveworks Weave GitOps	—	Jan 9, 2023	Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. GitOps run has a local S3 bucket which it uses for synchronizing files that are later applied against a Kubernetes cluster. The…
CVE-2022-23508	Weaveworks Weave GitOps	—	Jan 9, 2023	Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. A vulnerability in GitOps run could allow a local user or process to alter a Kubernetes cluster's resources. GitOps run has a local S3…
CVE-2022-31098	Weaveworks Weave GitOps	—	Jun 27, 2022	Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. A vulnerability in the logging of Weave GitOps could allow an authenticated remote attacker to view sensitive cluster configurations, aka…

CVE-2022-23509Jan 9, 2023
Weaveworks
Weave GitOps
risk 0.00cvss —epss 0.00
Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. GitOps run has a local S3 bucket which it uses for synchronizing files that are later applied against a Kubernetes cluster. The…
CVE-2022-23508Jan 9, 2023
Weaveworks
Weave GitOps
risk 0.00cvss —epss 0.00
Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. A vulnerability in GitOps run could allow a local user or process to alter a Kubernetes cluster's resources. GitOps run has a local S3…
CVE-2022-31098Jun 27, 2022
Weaveworks
Weave GitOps
risk 0.00cvss —epss 0.00
Weave GitOps is a simple open source developer platform for people who want cloud native applications, without needing Kubernetes expertise. A vulnerability in the logging of Weave GitOps could allow an authenticated remote attacker to view sensitive cluster configurations, aka…