Multicluster global hub

This hub aggregates every CVE we track for Multicluster global hub, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Multicluster global hub.

• CVE-2026-33812Excessive memory allocation when decoding malicious SFNT in golang.org/x/image6.1Apr 21, 2026
• CVE-2025-12141Grafana Alerting Editors can edit destination of webhooks they did not create6.5Apr 15, 2026
• CVE-2026-32281Inefficient policy validation in crypto/x5097.5Apr 8, 2026
• CVE-2026-32280Unexpected work during chain building in crypto/x5097.5Apr 8, 2026
• CVE-2026-32283Unauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tls7.5Apr 8, 2026
• CVE-2026-32288Unbounded allocation for old GNU sparse in archive/tar5.5Apr 8, 2026
• CVE-2026-33810Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x5098.2Apr 8, 2026
• CVE-2026-32289JsBraceDepth Context Tracking Bugs (XSS) in html/template6.1Apr 8, 2026
• CVE-2026-32285Denial of service in github.com/buger/jsonparser7.5Mar 26, 2026
• CVE-2026-27137Incorrect enforcement of email constraints in crypto/x5097.5Mar 6, 2026
• CVE-2025-66471urllib3 Streaming API improperly handles highly compressed data7.5Dec 5, 2025
• CVE-2025-66418urllib3 allows an unbounded number of links in the decompression chain7.5Dec 5, 2025
• CVE-2025-10894Nx: nx/devkit: malicious versions of nx and plugins published to npm9.6Sep 24, 2025
• CVE-2025-7195Operator-sdk: privilege escalation due to incorrect permissions of /etc/passwd5.2Aug 7, 2025
• CVE-2025-8556Github.com/cloudflare/circl: circl-fourq: missing and wrong validation can lead to incorrect results3.7Aug 6, 2025