/
DirectorySecurity AdvisoriesPricing
Sign In
Security Advisories

CVE-2022-39383

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-39383

Severity

Unknown

Description

KubeVela is an open source application delivery platform. Users using the VelaUX APIServer could be affected by this vulnerability. When using Helm Chart as the component delivery method, the request address of the warehouse is not restricted, and there is a blind SSRF vulnerability. Users who're using v1.6, please update the v1.6.1. Users who're using v1.5, please update the v1.5.8. There are no known workarounds for this issue.

References

  • https://images.chainguard.dev/security/CGA-g59r-x45f-r5f6

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs