/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-c6xv-hrfm-3vq2	CVE-2025-58190	Medium	kubeflow-admission-webhook	Not affected
CGA-h5m7-9959-qrpr	CVE-2025-47911	Medium	kubeflow-admission-webhook	Not affected
CGA-ffr2-cwq9-v6fc	CVE-2026-25934	Medium	osv-scanner	Fixed
CGA-ghqg-h5xv-7fr5	CVE-2026-25934	Medium	osv-scanner	Fixed
CGA-9765-84mv-cmp8	CVE-2025-58190	Medium	jitsucom-bulker-ingest	Fixed
CGA-g3v3-8cjm-j779	CVE-2025-47911	Medium	jitsucom-bulker-ingest	Fixed
CGA-4895-q4jg-6cx7	CVE-2025-58190	Medium	jitsucom-bulker-syncctl	Not affected
CGA-8554-66qf-8jxw	CVE-2025-47911	Medium	jitsucom-bulker-syncctl	Not affected
CGA-h99f-p9gf-rgfp	CVE-2025-58190	Medium	velero-plugin-for-csi-compat	Not affected
CGA-7wmq-58jx-fpj7	CVE-2025-47911	Medium	velero-plugin-for-csi-compat	Not affected
CGA-cpfj-9956-875x	CVE-2025-58190	Medium	kubeflow-pvcviewer-controller	Under investigation
CGA-9qpq-cwx6-h5gg	CVE-2025-47911	Medium	kubeflow-pvcviewer-controller	Under investigation
CGA-xmxf-5v3q-p3gh	CVE-2025-58190	Medium	metallb-speaker	Fixed
CGA-m7vx-7pqx-wwv2	CVE-2025-47911	Medium	metallb-speaker	Fixed
CGA-xxhc-m2hm-99x2	CVE-2025-58190	Medium	velero-plugin-for-csi	Fixed
CGA-cjv7-72rm-493c	CVE-2025-47911	Medium	velero-plugin-for-csi	Fixed

225,835 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company