crossplane-provider-azure-storage

Direct Vulnerabilities

Known vulnerabilities in the crossplane-provider-azure-storage package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H Untrusted Search Path	<2.6.0-r1
L GHSA-hfvc-g4fc-pqhx	<2.6.0-r1
L CVE-2026-27145	<2.5.0-r12
L CVE-2026-42504	<2.5.0-r12
L GHSA-4279-q6mj-392r	<2.5.0-r12
L CVE-2026-42507	<2.5.0-r12
L GHSA-h3gm-q7m7-mp28	<2.5.0-r12
L GHSA-h524-452v-82p9	<2.5.0-r12
L Cross-site Scripting (XSS)	<2.5.0-r11
L GHSA-5cv4-jp36-h3mw	<2.5.0-r11
L GHSA-wrh2-89vg-4j9g	<2.5.0-r11
L GHSA-cg87-vwwh-xvgj	<2.5.0-r11
L Resource Exhaustion	<2.5.0-r11
L Improper Restriction of Rendered UI Layers or Frames	<2.5.0-r11
L Improper Restriction of Rendered UI Layers or Frames	<2.5.0-r11
L Improper Restriction of Rendered UI Layers or Frames	<2.5.0-r11
L GHSA-m9x8-m34x-fj9q	<2.5.0-r11
L GHSA-w9p8-pvxh-rxpj	<2.5.0-r11
L Integer Overflow or Wraparound	<2.5.0-r10
L Improper Verification of Cryptographic Signature	<2.5.0-r10
L Missing Authorization	<2.5.0-r10
L Incorrect Type Conversion or Cast	<2.5.0-r10
H Loop with Unreachable Exit Condition ('Infinite Loop')	<2.5.0-r9
L GHSA-mh2q-q3fh-2475	<2.5.0-r8
L Allocation of Resources Without Limits or Throttling	<2.5.0-r8
L CVE-2026-32280	<2.5.0-r10
L CVE-2025-47914	<2.2.0-r2
L GHSA-q9hv-hpm4-hj6x	<2.4.0-r1
L CVE-2024-34158	<1.5.0-r1
L GHSA-p77j-4mvh-x3m3	<2.5.0-r2
L GHSA-w32m-9786-jp63	<1.10.1-r1
L GHSA-gjvh-7jh8-7xhm	<2.5.0-r10
L CVE-2024-34156	<1.5.0-r1
L GHSA-j5pm-7495-qmr3	<1.13.0-r3
L GHSA-f6x5-jh6r-wrfv	<2.2.0-r2
M Cross-site Scripting (XSS)	<2.5.0-r10
H Improper Certificate Validation	<2.5.0-r10
L GHSA-29qp-crvh-w22m	<1.11.2-r0
L CVE-2025-58181	<2.2.0-r2
L GHSA-29wx-vh33-7x7r	<1.11.2-r0
L GHSA-45x7-px36-x8w8	<0.41.0-r1
L GHSA-crqm-pwhx-j97f	<1.5.0-r1
M Information Exposure Through Log Files	<1.1.0-r4
L GHSA-v6v8-xj6m-xwqh	<1.1.0-r4
L CVE-2024-45337	<1.10.0-r1
L CVE-2024-45338	<1.10.1-r1
L GHSA-7mr4-xjxg-34g6	<2.5.0-r10
L GHSA-8xfx-rj4p-23jm	<1.5.0-r1
M Improper Validation of Integrity Check Value	<0.41.0-r1
L GHSA-v778-237x-gjrc	<1.10.0-r1
L GHSA-5w89-2c2x-6x66	<2.5.0-r10
C CVE-2026-1229	<2.4.0-r1
C CVE-2025-68121	<2.3.0-r3
L CVE-2024-24786	<0.42.1-r2
L GHSA-g9pc-8g42-g6vq	<1.11.2-r2
L GHSA-mh63-6h87-95cp	<1.11.2-r1
L GHSA-8r3f-844c-mc37	<0.42.1-r2
L GHSA-jrg3-gfjw-hm96	<2.5.0-r10
H Incorrect Authorization	<2.5.0-r10
L Loop with Unreachable Exit Condition ('Infinite Loop')	<2.5.0-r3
L GHSA-qxp5-gwg8-xv66	<1.11.1-r3
L CVE-2025-22870	<1.11.1-r3
L GHSA-hcg3-q754-cr77	<1.11.1-r2
L GHSA-j7vj-rw65-4v26	<1.5.0-r1
L CVE-2025-22869	<1.11.1-r2
L Improper Authorization	<2.5.0-r2
L Race Condition	<1.13.0-r3
L CVE-2024-34155	<1.5.0-r1
L CVE-2025-61732	<2.3.0-r3
L GHSA-m4pr-4j3g-9v7v	<2.5.0-r10
L CVE-2025-22866	<1.11.0-r2
L GHSA-65xw-vw82-r86x	<2.5.0-r3
L CVE-2023-45288	<1.0.1-r1
L GHSA-h355-32pf-p2xm	<2.3.0-r3
L GHSA-4v7x-pqxf-cx7m	<1.0.1-r1
L CVE-2025-22871	<1.11.2-r2
L Improper Validation of Specified Type of Input	<1.13.0-r1
L GHSA-3whm-j4xm-rv8x	<1.11.0-r2
L CVE-2025-22872	<1.11.2-r3
H Allocation of Resources Without Limits or Throttling	<2.5.0-r10
L GHSA-8jvr-vh7g-f8gx	<2.3.0-r3
L GHSA-2x5j-vhc8-9cwm	<1.13.0-r1
L Asymmetric Resource Consumption (Amplification)	<1.11.2-r1
L Improper Handling of Exceptional Conditions	<1.11.2-r0
L GHSA-6v2p-p543-phr9	<1.11.1-r1
L GHSA-vvgc-356p-c3xw	<1.11.2-r3
L GHSA-j5w8-q4qc-rx2x	<2.2.0-r2
L CVE-2025-22868	<1.11.1-r1

Vulnerability

Vulnerable Version

Untrusted Search Path

<2.6.0-r1