/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-4c5r-r2pp-w242	CVE-2025-47914	Medium	kubevirt-cdi-controller-fips-1.6	Not affected
CGA-c2gf-wj8j-w748	CVE-2025-47913	High	kubevirt-cdi-controller-fips-1.6	Not affected
CGA-2pvr-7g7q-vgfx	CVE-2026-35480	Unknown	rke2-runtime-fips-1.33	Under investigation
CGA-898j-x76r-9pqp	CVE-2026-35480	Unknown	k3s-static-1.31	Under investigation
CGA-vfmc-h7p9-857g	CVE-2026-35480	Unknown	rke2-runtime-fips-1.32	Under investigation
CGA-rffm-jqhq-r25m	CVE-2026-35480	Unknown	k3s-static-1.31	Under investigation
CGA-23f9-77qq-362x	CVE-2025-58190	Medium	kubevirt-cdi-apiserver-fips-1.6	Not affected
CGA-pg2m-p9fq-87cx	CVE-2025-47911	Medium	kubevirt-cdi-apiserver-fips-1.6	Not affected
CGA-4wxg-hrpw-6mrc	CVE-2025-58181	Medium	kubevirt-cdi-apiserver-fips-1.6	Not affected
CGA-pqqr-3jgw-mjvv	CVE-2025-47914	Medium	kubevirt-cdi-apiserver-fips-1.6	Not affected
CGA-h634-mc6v-wg6v	CVE-2025-47913	High	kubevirt-cdi-apiserver-fips-1.6	Not affected
CGA-24vm-99hx-374m	CVE-2026-35480	Unknown	k3s-static-1.33	Fixed
CGA-mxh9-2c78-4p22	CVE-2025-58190	Medium	kubevirt-cdi-apiserver-1.5	Not affected
CGA-wchm-35xw-5p6r	CVE-2025-47911	Medium	kubevirt-cdi-apiserver-1.5	Not affected
CGA-pg35-5w4v-pwcc	CVE-2025-58181	Medium	kubevirt-cdi-apiserver-1.5	Not affected
CGA-c388-7rmj-63q4	CVE-2025-47914	Medium	kubevirt-cdi-apiserver-1.5	Not affected

493,591 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company