devtron-labs
Bug: Security vulnerabilities in devtron
📜 Description
Hello @prakash100198 @vikramdevtron
Our team previously reached out to you regarding the vulnerabilities in devtron that we reported (https://github.com/devtron-labs/devtron/issues/6796).
Thank you again for remediating these vulnerabilities.
Please review our comments in the corresponding advisories. The researcher believes that one of these vulnerabilities may still be reproducible, so we kindly ask you to check it.
We would also appreciate it if you could share your planned timeline for disclosure. Additionally, we ask you to register CVEs and publish the advisories.
Thank you for your cooperation.
👟 Reproduction steps
👍 Expected behavior
👎 Actual Behavior
☸ Kubernetes version
Cloud provider
🌍 Browser
Chrome
🧱 Your Environment
No response
✅ Proposed Solution
No response
👀 Have you spent some time to check if this issue has been raised before?
- [x] I checked and didn't find any similar issue
🏢 Have you read the Code of Conduct?
- [x] I have read the Code of Conduct
@prakarsh-dt @vikramdevtron please confirm that you have seen our comment in the advisories. One of the vulnerabilities is still reproducible. We kindly ask you to revisit the vulnerability and publish the advisories.
Hi @012git012, you must be a member of the organization 'devtron-labs' to add or remove labels.
Hello @prakarsh-dt @012git012, We would like to bring this issue to your attention once again, as we are still awaiting your response.
Hi @012git012, you must be a member of the organization 'devtron-labs' to add or remove labels.