ose-azure-acr-image-credential-provider

Direct Vulnerabilities

Known vulnerabilities in the ose-azure-acr-image-credential-provider package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Information Exposure

*
  • H
Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

<0:4.17.0-202606171749.p2.g5bcfbfd.assembly.stream.el8
  • H
Allocation of Resources Without Limits or Throttling

<0:4.17.0-202606171749.p2.g5bcfbfd.assembly.stream.el8
  • H
Improper Validation of Syntactic Correctness of Input

<0:4.17.0-202606171749.p2.g5bcfbfd.assembly.stream.el8
  • H
Improper Validation of Unsafe Equivalence in Input

<0:4.22.0-202606291123.p2.ga17a3e3.assembly.stream.el8
  • H
Incorrect Conversion between Numeric Types

*
  • M
Integer Overflow or Wraparound

*
  • M
Missing Release of Resource after Effective Lifetime

*
  • M
Cross-site Scripting (XSS)

*
  • H
Excessive Platform Resource Consumption within a Loop

*
  • H
Improper Verification of Cryptographic Signature

*
  • H
Allocation of Resources Without Limits or Throttling

<0:4.15.0-202606040938.p2.g0d799a2.assembly.stream.el8
  • H
Improper Validation of Syntactic Correctness of Input

<0:4.15.0-202606040938.p2.g0d799a2.assembly.stream.el8
  • H
CVE-2025-68121

<0:4.15.0-202606040938.p2.g0d799a2.assembly.stream.el8
  • H
Excessive Platform Resource Consumption within a Loop

<0:4.15.0-202606040938.p2.g0d799a2.assembly.stream.el8
  • H
Allocation of Resources Without Limits or Throttling

<0:4.15.0-202606040938.p2.g0d799a2.assembly.stream.el8
  • H
Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

<0:4.16.0-202606221818.p2.ga3ebdc0.assembly.stream.el8
  • H
Creation of Immutable Text Using String Concatenation

*
  • H
Unchecked Input for Loop Condition

*
  • M
Improperly Implemented Security Check for Standard

*
  • M
Cross-site Scripting (XSS)

*
  • H
Improper Preservation of Permissions

*
  • M
External Control of Assumed-Immutable Web Parameter

*
  • H
Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

<0:4.18.0-202606160919.p2.g9795abd.assembly.stream.el8
  • H
Improper Certificate Validation

*
  • M
Improper Validation of Specified Type of Input

*
  • H
Missing Release of Resource after Effective Lifetime

*
  • M
Improper Output Neutralization for Logs

*
  • H
Improper Validation of Syntactic Correctness of Input

<0:4.16.0-202606031028.p2.ge5bac33.assembly.stream.el8
  • H
Improper Validation of Specified Quantity in Input

*
  • H
Allocation of Resources Without Limits or Throttling

<0:4.18.0-202606021914.p2.g9c24d76.assembly.stream.el8
  • H
Improper Validation of Syntactic Correctness of Input

<0:4.18.0-202606021914.p2.g9c24d76.assembly.stream.el8
  • L
Missing Release of Resource after Effective Lifetime

*
  • H
Improper Validation of Unsafe Equivalence in Input

<0:4.22.0-202606291123.p2.ga17a3e3.assembly.stream.el8
  • M
Improper Validation of Unsafe Equivalence in Input

*
  • H
CVE-2026-33811

*
  • M
Open Redirect

*
  • M
HTTP Request Smuggling

*
  • M
Cross-site Scripting (XSS)

*
  • M
Excessive Platform Resource Consumption within a Loop

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • L
Improper Validation of Specified Quantity in Input

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
NULL Pointer Dereference

*
  • M
Improper Validation of Integrity Check Value

*
  • M
Directory Traversal

*
  • M
Resource Exhaustion

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Out-of-bounds Read

*
  • M
Improper Certificate Validation

*
  • L
CVE-2025-58186

*
  • H
Allocation of Resources Without Limits or Throttling

*
  • M
Reachable Assertion

*
  • H
Reachable Assertion

*
  • M
Creation of Immutable Text Using String Concatenation

*
  • H
Allocation of Resources Without Limits or Throttling

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Improper Output Neutralization for Logs

*
  • M
Expected Behavior Violation

*
  • M
Expected Behavior Violation

*
  • M
Time-of-check Time-of-use (TOCTOU)

*
  • M
HTTP Request Smuggling

<0:4.15.0-202507041136.p0.g0d799a2.assembly.stream.el8
  • M
HTTP Request Smuggling

<0:4.16.0-202507050035.p0.ge5bac33.assembly.stream.el8
  • M
HTTP Request Smuggling

<0:4.18.0-202507011252.p0.g9c24d76.assembly.stream.el8
  • M
CVE-2025-4673

*
  • M
Cross-site Scripting (XSS)

*
  • M
Improper Input Validation

*
  • M
Information Exposure

*
  • L
Improper Verification of Cryptographic Signature

*
  • L
Improper Handling of Exceptional Conditions

*
  • M
Use of Uninitialized Variable

*
  • M
Misinterpretation of Input

<0:4.15.0-202408091502.p0.g0d799a2.assembly.stream.el8
  • M
Improper Input Validation

<0:4.15.0-202408091502.p0.g0d799a2.assembly.stream.el8
  • M
Cross-site Scripting (XSS)

<0:4.16.0-202407120242.p0.g0e95532.assembly.stream.el8
  • M
Cross-site Scripting (XSS)

<0:4.16.0-202407120242.p0.g0e95532.assembly.stream.el8
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:4.16.0-202407120242.p0.g0e95532.assembly.stream.el8
  • H
Improper Validation of Integrity Check Value

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Resource Exhaustion

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Arbitrary Code Injection

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Misinterpretation of Input

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Improper Certificate Validation

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Improper Input Validation

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Information Exposure

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Incorrect Behavior Order

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Improper Validation of Integrity Check Value

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Resource Exhaustion

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Incorrect Behavior Order

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Improper Certificate Validation

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Information Exposure

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Misinterpretation of Input

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • H
Arbitrary Code Injection

<0:4.16.0-202404301345.p0.g0e95532.assembly.stream.el8
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:4.16.0-202407120242.p0.g0e95532.assembly.stream.el8