k3s vulnerabilities

Known vulnerabilities in the k3s package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
L CVE-2024-41110	<1.30.3.1-r0
L GHSA-v23v-6jw2-98fq	<1.30.3.1-r0
L CVE-2024-24791	<1.30.2-r1
L GHSA-hw49-2p59-3mhj	<1.30.2-r1
L GHSA-v6v8-xj6m-xwqh	<1.30.1-r2
M Information Exposure Through Log Files	<1.30.1-r2
C CVE-2024-24790	<1.30.1-r1
L GHSA-49gw-vxvf-fc2g	<1.30.1-r1
M CVE-2024-24789	<1.30.1-r1
L GHSA-236w-p7wf-5ph8	<1.30.1-r1
L GHSA-4v7x-pqxf-cx7m	<1.29.3-r4
L CVE-2023-45288	<1.29.3-r4
L GHSA-c33x-xqrf-c478	<1.29.3-r3
L CVE-2024-22189	<1.29.3-r3
H Origin Validation Error	<1.29.2-r5
L GHSA-xw73-rw38-6vjc	<1.29.2-r5
L GHSA-mrww-27vc-gghv	<1.29.2-r3
L CVE-2024-27304	<1.29.2-r3
L GHSA-7jwh-3vrq-q3m8	<1.29.2-r3
L CVE-2024-24786	<1.29.2-r2
L GHSA-8r3f-844c-mc37	<1.29.2-r2
L CVE-2024-24783	<1.29.2-r1
L CVE-2024-24784	<1.29.2-r1
L GHSA-j6m3-gc37-6r6q	<1.29.2-r1
L GHSA-fgq5-q76c-gx78	<1.29.2-r1
L GHSA-rr6r-cfgf-gc6h	<1.29.2-r1
L CVE-2023-45289	<1.29.2-r1
L CVE-2023-45290	<1.29.2-r1
L GHSA-32ch-6x54-q4h9	<1.29.2-r1
L CVE-2024-24785	<1.29.2-r1
L GHSA-3q2c-pvp5-3cqp	<1.29.2-r1
L GHSA-xr7r-f8xq-vfvv	<1.29.0-r1
H Exposure of Resource to Wrong Sphere	<1.29.0-r1
L GHSA-45x7-px36-x8w8	<1.28.4-r0
M Improper Validation of Integrity Check Value	<1.28.4-r0
L GHSA-2wrh-6pvc-2jm9	<1.28.2-r1
L GHSA-mr45-rx8q-wcm9	<1.28.3-r1
L GHSA-rcjv-mgp8-qvmr	<1.28.2-r2
L GHSA-m4hf-6vgr-75r2	<1.27.5-r0
L GHSA-8pgv-569h-w5rw	<1.28.3-r2
L GHSA-4374-p667-p6c8	<1.28.2-r1
H CVE-2023-47108	<1.28.3-r2
L GHSA-jq35-85cj-fj4p	<1.28.3-r2
L GHSA-6xv5-86q9-7xr8	<1.28.3-r2
H Use of Hard-coded Cryptographic Key	<1.28.3-r1
H Allocation of Resources Without Limits or Throttling	<1.28.2-r2
M Cross-site Scripting (XSS)	<1.28.2-r1
H Allocation of Resources Without Limits or Throttling	<1.28.2-r1
H Allocation of Resources Without Limits or Throttling	<1.27.5-r0

Vulnerability

Vulnerable Version

<1.30.3.1-r0

<1.30.3.1-r0

<1.30.2-r1

<1.30.2-r1

<1.30.1-r2