/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-r457-28j9-p87m	CVE-2026-22751	Unknown	apache-nifi	Fixed
CGA-3g2g-47rp-c64j	CVE-2026-22751	Unknown	apache-nifi	Unspecified
CGA-pggh-fm9h-h274	CVE-2026-5598	Unknown	apache-nifi	Unspecified
CGA-q2hq-378h-jgcw	CVE-2026-5598	Unknown	apache-nifi	Under investigation
CGA-pq28-88vj-w5vq	CVE-2026-5598	Unknown	kserve-modelmesh	Fixed
CGA-7mmv-6xmm-84q3	CVE-2026-5598	Unknown	logstash-9.3-with-output-opensearch	Under investigation
CGA-g65x-6hv5-pvrv	CVE-2026-5598	Unknown	logstash-9.3-with-output-opensearch	Under investigation
CGA-pjmx-fhfj-32c3	CVE-2026-41520	Unknown	kubescape-server	Under investigation
CGA-g35f-rvjm-frh2	CVE-2026-41520	Unknown	kubescape-operator-fips	Fixed
CGA-m6v2-r9jg-jw7j	CGA-m6v2-r9jg-jw7j	Unknown	litellm	Under investigation
CGA-ghq5-hwgp-2wf5	CVE-2026-22751	Unknown	nacos	Under investigation
CGA-wh4p-5h97-2xmg	CVE-2026-5598	Unknown	elasticsearch-9.0	Fixed
CGA-6frw-vrc4-8344	CVE-2026-5598	Unknown	commercial-elasticsearch-8.18	Fix not planned
CGA-h9jr-jmmc-qq6x	CVE-2026-22751	Unknown	camunda-8.8	Under investigation
CGA-2f6x-hgc2-jc5w	CVE-2026-41520	Unknown	hubble-ui-backend	Fixed
CGA-jcpm-79wv-85qj	CVE-2026-5598	Unknown	ruby3.3-bouncy-castle-java	Under investigation

578,952 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company