kubeflow vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the kubeflow package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
GHSA-2wrh-6pvc-2jm9

<1.10.0-r4
  • L
GHSA-69cg-p879-7622

<1.10.0-r4
  • L
GHSA-xrjj-mj9h-534m

<1.10.0-r4
  • M
Information Exposure Through Log Files

<1.10.0-r4
  • L
GHSA-r48q-9g5r-8q2h

<1.10.0-r3
  • H
Allocation of Resources Without Limits or Throttling

<1.10.0-r4
  • L
GHSA-8r3f-844c-mc37

<1.10.0-r3
  • L
GHSA-c3h9-896r-86jm

<1.10.0-r3
  • H
CVE-2023-44487

<1.10.0-r4
  • L
CVE-2025-22872

<1.10.0-r4
  • L
GHSA-74fp-r6jw-h4mp

<1.10.0-r4
  • H
CVE-2021-43565

<1.10.0-r4
  • H
CVE-2022-27191

<1.10.0-r4
  • L
GHSA-4v7x-pqxf-cx7m

<1.10.0-r4
  • M
Allocation of Resources Without Limits or Throttling

<1.10.0-r4
  • L
GHSA-33c5-9fx5-fvjm

<1.10.0-r4
  • L
GHSA-hp87-p4gw-j4gq

<1.10.0-r3
  • L
GHSA-w32m-9786-jp63

<1.10.0-r4
  • L
GHSA-qppj-fm5r-hxr3

<1.10.0-r4
  • M
Improper Privilege Management

<1.10.0-r2
  • L
CVE-2024-45337

<1.10.0-r4
  • M
Cross-site Scripting (XSS)

<1.10.0-r4
  • L
GHSA-jmrx-5g74-6v2f

<1.10.0-r4
  • L
GHSA-p782-xgp4-8hr8

<1.10.0-r2
  • L
GHSA-gwc9-m7rh-j2ww

<1.10.0-r4
  • M
Improper Validation of Integrity Check Value

<1.10.0-r4
  • L
GHSA-45x7-px36-x8w8

<1.10.0-r4
  • L
GHSA-qxp5-gwg8-xv66

<1.10.0-r4
  • L
CVE-2024-45339

<1.10.0-r3
  • L
GHSA-6wxm-mpqj-6jpf

<1.10.0-r3
  • L
CVE-2023-45288

<1.10.0-r4
  • L
GHSA-4374-p667-p6c8

<1.10.0-r4
  • L
GHSA-vvgc-356p-c3xw

<1.10.0-r4
  • M
Information Exposure Through Log Files

<1.10.0-r4
  • L
CVE-2024-45338

<1.10.0-r4
  • L
GHSA-8cfg-vx93-jvxw

<1.10.0-r4
  • L
GHSA-8c26-wmh5-6g9v

<1.10.0-r4
  • H
Deserialization of Untrusted Data

<1.10.0-r3
  • M
Open Redirect

<1.10.0-r4
  • H
CVE-2022-27664

<1.10.0-r4
  • L
GHSA-m425-mq94-257g

<1.10.0-r3
  • L
CVE-2025-22870

<1.10.0-r4
  • L
GHSA-vvpx-j8f3-3w6h

<1.10.0-r4
  • L
GHSA-v778-237x-gjrc

<1.10.0-r4
  • H
Improper Validation of Array Index

<1.10.0-r3
  • C
Authorization Bypass Through User-Controlled Key

<1.10.0-r3
  • H
CVE-2022-41723

<1.10.0-r4
  • L
GHSA-69ch-w2m2-3vjp

<1.10.0-r2
  • L
CVE-2024-24786

<1.10.0-r3
  • H
Missing Release of Resource after Effective Lifetime

<1.10.0-r2