All 3 CVE vulnerabilities found in weave-gitops, with AI-generated Chinese analysis, references, and POCs.
Vendor: weaveworks
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-23509 | Weave Gitops Run vulnerable to insecure communication CWE-200 | 7.4 | High | 2023-01-09 |
| CVE-2022-23508 | GitOps Run allows for Kubernetes workload injection CWE-284 | 8.9 | High | 2023-01-09 |
| CVE-2022-31098 | Weave GitOps leaked cluster credentials into logs on connection errors CWE-532 | 9.0 | Critical | 2022-06-27 |
All 3 known CVE vulnerabilities affecting weave-gitops with full Chinese analysis, references, and POCs where available.