/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-qp7f-c289-443p	CVE-2025-47911	Medium	nri-prometheus	Not affected
CGA-gf4g-xp7x-q7hv	CVE-2025-58190	Medium	tetra	Not affected
CGA-5rm3-23p2-vx29	CVE-2025-47911	Medium	tetra	Not affected
CGA-q856-c4pp-86gj	CVE-2025-58190	Medium	sriov-network-device-plugin	Fixed
CGA-5j65-63j5-wfch	CVE-2025-47911	Medium	sriov-network-device-plugin	Fixed
CGA-6585-3qgq-hwj9	CVE-2025-58190	Medium	mongodb-kubernetes-operator	Not affected
CGA-hhqg-3f66-m55h	CVE-2025-47911	Medium	mongodb-kubernetes-operator	Not affected
CGA-6x3g-fp9p-2m5g	CVE-2025-58190	Medium	kubernetes-dashboard-web	Under investigation
CGA-2g94-6wqq-3c7j	CVE-2025-47911	Medium	kubernetes-dashboard-web	Under investigation
CGA-7fch-mpxf-v7pq	CVE-2025-58190	Medium	kserve-qpext	Fixed
CGA-h636-v2h8-cm49	CVE-2025-47911	Medium	kserve-qpext	Fixed
CGA-264j-mwrx-6xhf	CVE-2026-25934	Medium	wolfictl	Fixed
CGA-r87f-mfcv-6694	CVE-2026-25934	Medium	scorecard	Fixed
CGA-mxjj-vmw6-v5hv	CVE-2026-25934	Medium	crossplane-2.1-crank	Fixed
CGA-vqm6-7q79-6v24	CVE-2025-58190	Medium	envoy-ratelimit	Not affected
CGA-r3m2-26j6-wg7x	CVE-2025-47911	Medium	envoy-ratelimit	Not affected

225,835 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company