CVE reporting
This page hosts all known information about any security issues, mitigations and triaged CVEs.
Please reach out to us at info@fluent.do directly for any specific concerns or queries.
Triaged Security Vulnerabilities
This document lists all triaged security vulnerabilities along with their VEX status.
A VEX document is available to download for automation.
| CVE | Status | Notes |
|---|---|---|
| CVE-2023-2953 | Not Affected | Fluent Bit does not use this component directly or in the way affected in the CVE. |
Known agent vulnerabilities
High and critical vulnerabilities not triaged for the latest version (ghcr.io/fluentdo/agent:25.9.1) of the agent are shown below, as reported by Grype.
| Package | Version Installed | Vulnerability ID | Severity |
|---|---|---|---|
All agent and OSS versions
Full unfiltered reports are shown below, covering all severities and without any filtering for triaged issues.