pkg:Bitnami/contour

5 total CVEsCRITICAL1HIGH3MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • MEDIUM5.3CVE-2023-44487⚠ KEVnghttp2 - security update
    from 0, < 1.24.6
  • CRITICAL9.8CVE-2024-36539Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account'…
    >= 1.28.3, < 1.28.4
  • HIGH8.5CVE-2021-32783ExternalName Services can be used to gain access to Envoy's admin interface
    from 0, < 1.17.1
  • HIGH8.1CVE-2026-41246Contour has Lua code injection via Cookie Path Rewrite Policy
    >= 1.19.0, < 1.31.6, >= 1.32.0, < 1.32.5, >= 1.33.0, < 1.33.4
  • HIGH7.5CVE-2020-15127Denial of service in Contour
    from 0, < 1.7.0