kubev2v CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

kubev2v vulnerability overview

Aggregates CVE and security vulnerability intelligence across all kubev2v-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Disclosed issues often relate to vendor risk path handling and vendor risk cross-site scripting; exposure may include vendor impact file overwrite and vendor impact session compromise in vendor surface software deployment contexts.

Vulnerability distribution trend (last 24 months)

Showing 13 of 3 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2026-53476 A flaw was found in assisted-migration-agent. An unauthenticated attacker, located on the same local area network (LAN), can exploit a path traversal vulnerability. By crafting a specially designed gzipped tarball, the attacker can bypass security checks and write arbitrary files to the system. This could ultimately lead to the execution of unauthorized code on the appliance. [email protected] 9.6 0.29% 2026-06-10 2026-06-17
CVE-2026-53475 A flaw was found in assisted-migration-agent. The application hardcodes insecure Transport Layer Security (TLS) connections when communicating with vCenter. This vulnerability allows a Man-in-the-Middle (MITM) attacker to intercept and harvest vCenter administrator credentials. This can lead to unauthorized access to vCenter. [email protected] 9.3 0.25% 2026-06-10 2026-06-17
CVE-2026-53473 A flaw was found in migration-planner-ui-app. An attacker can register a malicious discovery agent with a specially crafted credentialUrl containing JavaScript code. When an organizational user clicks this link in the user interface, the embedded malicious code executes within the user's browser session. This cross-site scripting (XSS) vulnerability allows the attacker to compromise the victim's Red Hat Single Sign-On (SSO) session, potentially leading to unauthorized cross-tenant data access an [email protected] 7.3 0.23% 2026-06-10 2026-06-17
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence