/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-w9gf-rpf7-mhgf	CVE-2025-58190	Medium	dive	Fixed
CGA-v2q3-j6mg-8w2g	CVE-2025-47911	Medium	dive	Fixed
CGA-25p9-f4r3-895c	CVE-2026-25934	Medium	nfpm	Fixed
CGA-733v-h9cx-5xr2	CVE-2025-58190	Medium	opensearch-k8s-operator	Fixed
CGA-fqgw-rcq8-273q	CVE-2025-47911	Medium	opensearch-k8s-operator	Fixed
CGA-wpw6-7cmh-fr62	CVE-2025-58190	Medium	grpcurl	Under investigation
CGA-ww98-xj7f-qhx2	CVE-2025-47911	Medium	grpcurl	Under investigation
CGA-5g28-57jx-69x5	CVE-2025-58190	Medium	terraform-provider-time	Under investigation
CGA-xp86-4w7w-xgh4	CVE-2025-47911	Medium	terraform-provider-time	Under investigation
CGA-mjq6-cxx7-hfvm	CVE-2025-58190	Medium	kubernetes-dashboard-metrics-scraper	Not affected
CGA-c6g5-qfg9-qg46	CVE-2025-47911	Medium	kubernetes-dashboard-metrics-scraper	Not affected
CGA-f5pr-x9r3-r9qx	CVE-2026-1225	Unknown	nextflow	Fixed
CGA-3cqf-7vfr-w82w	CVE-2025-48924	Medium	nextflow	Under investigation
CGA-6qgc-5vp3-gq47	CVE-2026-25934	Medium	k9s	Fixed
CGA-rf2m-7w8r-c9fv	CVE-2025-58190	Medium	verticadb-operator	Fixed
CGA-8m92-fx5c-9f6f	CVE-2025-47911	Medium	verticadb-operator	Fixed

225,835 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company