falco | Snyk

Direct Vulnerabilities

Known vulnerabilities in the falco package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Missing Initialization of Resource	<0.42.0-r0
L CVE-2025-4674	<0.42.0-r0
L CVE-2025-22874	<0.41.2-r0
L GHSA-6f52-wpx2-hvf2	<0.41.2-r0
L GHSA-wp3j-xq48-xpjw	<0.42.0-r0
L CVE-2025-47906	<0.42.0-r0
L GHSA-4vq8-7jfc-9cvp	<0.42.0-r0
H Creation of Temporary File With Insecure Permissions	<0.42.0-r0
H Improper Certificate Validation	<0.42.0-r0
L GHSA-62jj-gr2r-5c34	<0.41.2-r0
L Race Condition	<0.42.0-r0
L GHSA-wprm-fgrx-xj42	<0.42.0-r0
L Allocation of Resources Without Limits or Throttling	<0.42.0-r0
L GHSA-jc7w-c686-c4v9	<0.42.0-r0
L GHSA-j5pm-7495-qmr3	<0.42.0-r0
L GHSA-m68q-4hqr-mc6f	<0.42.0-r0
L CVE-2025-4673	<0.41.2-r0
L GHSA-gwrf-jf3h-w649	<0.42.0-r0
L GHSA-65gg-3w2w-hr4h	<0.42.0-r0
H Directory Traversal	<0.42.0-r0
H Origin Validation Error	<0.37.1-r0
M Allocation of Resources Without Limits or Throttling	<0.37.1-r0
L CVE-2024-24786	<0.37.1-r0
H Allocation of Resources Without Limits or Throttling	<0.37.1-r0
L CVE-2023-45288	<0.37.1-r0
L CVE-2023-45290	<0.37.1-r0
L CVE-2023-45289	<0.37.1-r0
L CVE-2024-24784	<0.37.1-r0
L CVE-2024-24783	<0.37.1-r0
L CVE-2024-24785	<0.37.1-r0
L CVE-2024-28122	<0.37.1-r0
L CVE-2024-28180	<0.37.1-r0
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0.37.1-r0
H Resource Exhaustion	<0.37.1-r0
H Arbitrary Code Injection	<0.37.1-r0
C Arbitrary Code Injection	<0.37.1-r0
H CVE-2023-39323	<0.37.1-r0
C Arbitrary Code Injection	<0.37.1-r0
H Allocation of Resources Without Limits or Throttling	<0.37.1-r0
H CVE-2022-41723	<0.37.1-r0
H Directory Traversal	<0.37.1-r0
H CVE-2023-44487	<0.37.1-r0
M CVE-2023-39326	<0.37.1-r0
C Arbitrary Code Injection	<0.37.1-r0
H Allocation of Resources Without Limits or Throttling	<0.37.1-r0
H Exposure of Resource to Wrong Sphere	<0.37.1-r0
M Resource Exhaustion	<0.37.1-r0
H Integer Overflow or Wraparound	<0.37.1-r0
H Resource Exhaustion	<0.37.1-r0
M Incorrect Calculation	<0.37.1-r0
M Improper Validation of Integrity Check Value	<0.37.1-r0
H Information Exposure	<0.37.1-r0
C CVE-2023-24540	<0.37.1-r0
M Interpretation Conflict	<0.37.1-r0
H Arbitrary Code Injection	<0.37.1-r0
C Arbitrary Code Injection	<0.37.1-r0
M Cross-site Scripting (XSS)	<0.37.1-r0
H NULL Pointer Dereference	<0.37.1-r0
M Cross-site Scripting (XSS)	<0.37.1-r0
H Allocation of Resources Without Limits or Throttling	<0.37.1-r0
M Resource Exhaustion	<0.37.1-r0
H CVE-2023-45285	<0.37.1-r0

Vulnerability

Vulnerable Version

Missing Initialization of Resource

<0.42.0-r0