All 3 CVE vulnerabilities found in crossplane, with AI-generated Chinese analysis, references, and POCs.
Vendor: crossplane
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-38495 | Crossplane vulnerable to possible image tampering from missing image validation for Packages CWE-20 | 8.4 | High | 2023-07-27 |
| CVE-2023-37900 | Crossplane vulnerable to denial of service from large image CWE-400 | 3.4 | Low | 2023-07-27 |
| CVE-2023-27484 | Unchecked fieldpath index in Composition's patches can lead to arbitrary memory allocation in crossplane CWE-400 | 6.2 | Medium | 2023-03-09 |
All 3 known CVE vulnerabilities affecting crossplane with full Chinese analysis, references, and POCs where available.