kubeflow-katib

Direct Vulnerabilities

Known vulnerabilities in the kubeflow-katib package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
Inefficient Regular Expression Complexity

<0.19.0-r25
  • L
GHSA-c2c7-rcm5-vvqj

<0.19.0-r25
  • L
GHSA-3v7f-55p6-f55p

<0.19.0-r25
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r25
  • L
GHSA-58c5-g7wp-6w37

<0.19.0-r24
  • L
Information Exposure

<0.19.0-r24
  • L
GHSA-3ppc-4f35-3m26

<0.19.0-r23
  • L
GHSA-7r86-cg39-jmmj

<0.19.0-r23
  • L
GHSA-23c5-xmqv-rm74

<0.19.0-r23
  • L
Algorithmic Complexity

<0.19.0-r23
  • H
Inefficient Regular Expression Complexity

<0.19.0-r23
  • L
Inefficient Regular Expression Complexity

<0.19.0-r23
  • L
GHSA-mf9v-mfxr-j63j

<0.19.0-r21
  • L
GHSA-65pc-fj4g-8rjx

<0.19.0-r21
  • L
GHSA-qccp-gfcp-xxvc

<0.19.0-r21
  • M
Inefficient Regular Expression Complexity

<0.19.0-r21
  • M
Information Exposure

<0.19.0-r21
  • H
Improper Handling of Highly Compressed Data (Data Amplification)

<0.19.0-r21
  • L
GHSA-jg22-mg44-37j8

<0.19.0-r18
  • H
Origin Validation Error

<0.19.0-r18
  • L
GHSA-hg6j-4rv6-33pg

<0.19.0-r18
  • L
CVE-2026-42507

<0.19.0-r18
  • H
Deserialization of Untrusted Data

<0.19.0-r18
  • L
CVE-2026-27145

<0.19.0-r18
  • L
GHSA-4279-q6mj-392r

<0.19.0-r18
  • L
GHSA-h3gm-q7m7-mp28

<0.19.0-r18
  • M
Open Redirect

<0.19.0-r3
  • M
Open Redirect

<0.19.0-r15
  • H
Allocation of Resources Without Limits or Throttling

<0.19.0-r15
  • L
GHSA-2xpw-w6gg-jr37

<0.19.0-r15
  • L
GHSA-gm62-xv2j-4w53

<0.19.0-r15
  • H
Improper Handling of Highly Compressed Data (Data Amplification)

<0.19.0-r15
  • L
GHSA-pq67-6m6q-mj2v

<0.19.0-r15
  • L
GHSA-48p4-8xcf-vxj5

<0.19.0-r3
  • L
GHSA-5m4p-2gjx-p2g8

<0.19.0-r15
  • L
GHSA-497x-jcxf-m478

<0.19.0-r15
  • M
Out-of-bounds Write

<0.19.0-r15
  • M
Link Following

<0.19.0-r15
  • L
GHSA-3v2c-x6q9-f697

<0.19.0-r15
  • L
GHSA-qc64-m6c2-v4x7

<0.19.0-r15
  • L
Improper Encoding or Escaping of Output

<0.19.0-r15
  • L
GHSA-qf3q-3h68-mmh2

<0.19.0-r15
  • L
Cross-site Scripting (XSS)

<0.19.0-r15
  • L
CVE-2026-6357

<0.19.0-r15
  • L
CVE-2026-42501

<0.19.0-r15
  • H
Double Free

<0.19.0-r15
  • L
GHSA-2283-wf8c-rw8r

<0.19.0-r15
  • H
NULL Pointer Dereference

<0.19.0-r15
  • L
GHSA-8g2r-hhvj-mv99

<0.19.0-r15
  • L
GHSA-jp4c-xjxw-mgf9

<0.19.0-r15
  • M
Insecure Temporary File

<0.19.0-r14
  • L
CVE-2026-3219

<0.19.0-r14
  • L
GHSA-58qw-9mgm-455v

<0.19.0-r14
  • L
GHSA-gc5v-m9x4-r6x2

<0.19.0-r14
  • H
Improper Handling of Highly Compressed Data (Data Amplification)

<0.19.0-r14
  • L
GHSA-38jv-5279-wg99

<0.19.0-r14
  • H
CVE-2026-0994

<0.19.0-r12
  • L
GHSA-7gcm-g887-7qv7

<0.19.0-r12
  • L
GHSA-7mr4-xjxg-34g6

<0.19.0-r17
  • L
GHSA-gjvh-7jh8-7xhm

<0.19.0-r17
  • L
GHSA-m4pr-4j3g-9v7v

<0.19.0-r17
  • L
CVE-2026-32280

<0.19.0-r17
  • L
GHSA-5w89-2c2x-6x66

<0.19.0-r17
  • H
Improper Certificate Validation

<0.19.0-r17
  • M
Cross-site Scripting (XSS)

<0.19.0-r17
  • H
Incorrect Authorization

<0.19.0-r17
  • L
GHSA-p77j-4mvh-x3m3

<0.19.0-r8
  • L
Improper Authorization

<0.19.0-r8
  • H
CVE-2025-15558

<0.19.0-r6
  • L
GHSA-p436-gjf2-799p

<0.19.0-r6
  • L
GHSA-9hjg-9r4m-mvj7

<0.18.0-r6
  • L
Improper Certificate Validation

<0.19.0-r2
  • H
Insufficient Verification of Data Authenticity

<0.18.0-r0
  • L
GHSA-f6x5-jh6r-wrfv

<0.19.0-r1
  • L
Improper Handling of Exceptional Conditions

<0.17.0-r6
  • L
GHSA-g4mx-q9vg-27p4

<0.18.0-r0
  • L
Asymmetric Resource Consumption (Amplification)

<0.17.0-r14
  • L
CVE-2024-45336

<0.17.0-r9
  • M
Missing Initialization of Resource

<0.18.0-r8
  • L
GHSA-63vm-454h-vhhq

<0.19.0-r4
  • L
GHSA-w32m-9786-jp63

<0.17.0-r8
  • L
CVE-2025-58181

<0.19.0-r1
  • L
Insufficiently Protected Credentials

<0.18.0-r6
  • L
GHSA-8xfx-rj4p-23jm

<0.17.0-r13
  • L
GHSA-7c64-f9jr-v9h2

<0.19.0-r2
  • L
GHSA-3f6r-qh9c-x6mm

<0.17.0-r9
  • L
GHSA-7wrw-r4p8-38rx

<0.17.0-r9
  • L
CVE-2024-45341

<0.17.0-r9
  • L
CVE-2024-34155

<0.17.0-r13
  • L
GHSA-v23v-6jw2-98fq

<0.17.0-r13
  • L
GHSA-j5w8-q4qc-rx2x

<0.19.0-r1
  • L
Directory Traversal

<0.19.0-r4
  • L
CVE-2024-34156

<0.17.0-r13
  • L
CVE-2024-34158

<0.17.0-r13
  • M
Directory Traversal

<0.19.0-r5
  • L
Race Condition

<0.18.0-r7
  • L
GHSA-qxp5-gwg8-xv66

<0.17.0-r13
  • L
GHSA-j5pm-7495-qmr3

<0.18.0-r7
  • L
CVE-2025-47914

<0.19.0-r1
  • L
GHSA-mh63-6h87-95cp

<0.17.0-r14
  • L
CVE-2024-45338

<0.17.0-r8
  • L
GHSA-8pjc-487g-w6p2

<0.18.0-r9
  • L
CVE-2025-22870

<0.17.0-r13
  • L
GHSA-248v-346w-9cwc

<0.18.0-r0
  • L
GHSA-v778-237x-gjrc

<0.17.0-r7
  • L
CVE-2025-22869

<0.17.0-r11
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r4
  • L
GHSA-8rrh-rw8j-w5fx

<0.19.0-r5
  • L
CVE-2025-22868

<0.17.0-r12
  • M
CVE-2023-45803

<0.18.0-r0
  • L
GHSA-6vgw-5pg2-w6jp

<0.19.0-r5
  • L
GHSA-crqm-pwhx-j97f

<0.17.0-r13
  • L
CVE-2026-1703

<0.19.0-r5
  • L
GHSA-hcg3-q754-cr77

<0.17.0-r11
  • L
CVE-2024-41110

<0.17.0-r13
  • L
GHSA-29wx-vh33-7x7r

<0.17.0-r6
  • L
CVE-2024-45337

<0.17.0-r7
  • L
GHSA-58pv-8j8x-9vj2

<0.19.0-r4
  • L
Improper Certificate Validation

<0.19.0-r2
  • L
CVE-2025-47910

<0.18.0-r9
  • L
GHSA-5mh9-3jwc-rp59

<0.19.0-r2
  • L
GHSA-6v2p-p543-phr9

<0.17.0-r12
  • L
GHSA-j7vj-rw65-4v26

<0.17.0-r13
  • L
GHSA-4vq8-7jfc-9cvp

<0.18.0-r8
  • L
Arbitrary Code Injection

<0.18.0-r0
  • L
GHSA-cx63-2mw6-8hw5

<0.18.0-r0
  • M
CVE-2024-37891

<0.18.0-r0
  • L
GHSA-34jh-p97f-mpxf

<0.18.0-r0
  • M
Insecure Storage of Sensitive Information

<0.16.0-r12
  • C
CVE-2024-24790

<0.16.0-r12
  • M
CVE-2024-24789

<0.16.0-r12
  • L
CVE-2024-35195

<0.18.0-r0
  • L
GHSA-9wx4-h78v-vm56

<0.18.0-r0
  • H
Inefficient Regular Expression Complexity

<0.18.0-r0
  • L
GHSA-jjg7-2v4v-x38h

<0.18.0-r0
  • L
CVE-2024-34062

<0.16.0-r9
  • L
CVE-2023-45288

<0.16.0-r8
  • H
Origin Validation Error

<0.16.0-r7
  • L
CVE-2024-24786

<0.16.0-r6
  • L
CVE-2023-45289

<0.16.0-r5
  • L
CVE-2023-45290

<0.16.0-r5
  • L
CVE-2024-24785

<0.16.0-r5
  • L
CVE-2024-24783

<0.16.0-r5
  • L
CVE-2024-24784

<0.16.0-r5
  • M
Improper Validation of Integrity Check Value

<0.16.0-r2
  • H
CVE-2023-44487

<0.16.0-r0
  • M
Cross-site Scripting (XSS)

<0.15.0-r7
  • H
Allocation of Resources Without Limits or Throttling

<0.15.0-r7