GHSA-p22h-3m2v-cmgh: Cosmos SDK's Integer Overflow vulnerability in its Validator Rewards pool can cause a chain halt

GHSA-557j-xg8c-q2mm: Helm vulnerable to Code Injection through malicious chart.yaml content

GHSA-x698-5hjm-w2m5: pyLoad is vulnerable to attacks that bypass localhost restrictions, enabling the creation of arbitrary packages

GHSA-gjv4-ghm7-q58q: MCP Server Kubernetes vulnerable to command injection in several tools

GHSA-rj53-j6jw-7f7g: Babylon vulnerable to chain halt when a message modifies the validator set at the epoch boundary

Raneto v0.17.0 employs weak password complexity requirements, allowing attackers to crack user passwords via brute-force attacks. Version 0.17.1 contains security mitigations for this and other vulnerabilities.

**Raneto v0.17.0 employs weak password complexity requirements**

Critical severity GitHub Reviewed Published Aug 5, 2022 • Updated Aug 11, 2022

Headline

GHSA-7942-2fx8-qhpf: Raneto v0.17.0 employs weak password complexity requirements

ghsa: Latest News