Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

metal3-io — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting metal3-io. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by metal3-io:baremetal-operatorironic-image
CVE IDTitleCVSSSeverityPublished
CVE-2025-29781 Bare Metal Operator (BMO) can expose any secret from other namespaces via BMCEventSubscription CRD — baremetal-operatorCWE-200 6.5 Medium2025-03-17
CVE-2024-43803 BMO can expose particularly named secrets from other namespaces via BMH CRD — baremetal-operatorCWE-200 4.9 Medium2024-09-03
CVE-2024-31463 Ironic-image allows unauthenticated local access to Ironic API — ironic-imageCWE-288 4.7 Medium2024-04-17
CVE-2023-40585 Unauthenticated access to Ironic API — ironic-imageCWE-306 7.3 High2023-08-25
CVE-2023-30841 Ironic and ironic-inspector deployed within Baremetal Operator may expose as ConfigMaps — baremetal-operatorCWE-200 6.0 Medium2023-04-26

This page lists every published CVE security advisory associated with metal3-io. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.