Browse all 4 CVE security advisories affecting crossplane. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-38495 | Crossplane vulnerable to possible image tampering from missing image validation for Packages — crossplaneCWE-20 | 8.4 | High | 2023-07-27 |
| CVE-2023-37900 | Crossplane vulnerable to denial of service from large image — crossplaneCWE-400 | 3.4 | Low | 2023-07-27 |
| CVE-2023-27484 | Unchecked fieldpath index in Composition's patches can lead to arbitrary memory allocation in crossplane — crossplaneCWE-400 | 6.2 | Medium | 2023-03-09 |
| CVE-2023-27483 | fieldpath's Paved.SetValue allows growing arrays up to arbitrary sizes in crossplane-runtime — crossplane-runtimeCWE-400 | 5.9 | Medium | 2023-03-09 |
This page lists every published CVE security advisory associated with crossplane. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.