GHSA-qw6q-3pgr-5cwq: KubeVirt Arbitrary Container File Read 

GHSA-38jw-g2qx-4286: KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer 

GHSA-m6hq-p25p-ffr2: containerd CRI server: Host memory exhaustion through Attach goroutine leak

GHSA-x33c-7c2v-mrj9: Apollo Router Affected by an Access Control Bypass on Polymorphic Types

GHSA-g8jh-vg5j-4h3f: Apollo Router Improperly Enforces Renamed Access Control Directives

squirrellyjs squirrelly v9.0.0 was discovered to contain a code injection vulnerability via the component `options.varName`. The issue was fixed in version 9.1.0.

**squirrelly Code Injection vulnerability**

High severity GitHub Reviewed Published Aug 21, 2024 to the GitHub Advisory Database • Updated Aug 21, 2024

Headline

GHSA-w5pw-gmcw-rfc8: squirrelly Code Injection vulnerability

ghsa: Latest News