VYPR

Loft

by Loft Sh

Source repositories

CVEs (2)

  • CVE-2026-22806CriJan 29, 2026
    risk 0.59cvss 9.1epss 0.00

    vCluster Platform provides a Kubernetes platform for managing virtual clusters, multi-tenancy, and cluster sharing. Prior to versions 4.6.0, 4.5.4, 4.4.2, and 4.3.10, when an access key is created with a limited scope, the scope can be bypassed to access resources outside of it.…

  • CVE-2026-42457CriMay 14, 2026
    risk 0.52cvss 9.0epss 0.00

    vCluster Platform provides a Kubernetes platform for managing virtual clusters, multi-tenancy, and cluster sharing. Prior to 4.4.3, 4.5.5, 4.6.2, 4.7.1, and 4.8.0, there is a Stored XSS attack vulnerability via the name field of a templateRef. This can lead to the execution of…