cert-manager - 6 CVEs (Page 1/1)

About “cert-manager”

A curated feed of “cert-manager”-related CVEs appears below. We currently track 6 CVEs for this tag (all time). In the last 365 days, 2 were published. Average CVSS is 6.5 (all time; 5.7 over 365d), and 33% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-185 - Incorrect Regular Expression, CWE-129 - Improper Validation of Array Index.

In our taxonomy this topic maps to a MODERATE impact class. Container and Kubernetes fixes usually require image rebuilds and control plane or node upgrades. Prioritize exposed surfaces, restart workloads on patched bases, and tighten RBAC and NetworkPolicies. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.

Support & lifecycle: cert-manager

This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.

Cycle	Release	Latest	EOL	LTS
1.20	2026-03-10	1.20.2	-
1.19	2025-10-07	1.19.5	-
1.18	2025-06-10	1.18.6	2026-03-10 Expired
1.17	2025-02-03	1.17.4	2025-10-07 Expired
1.16	2024-10-03	1.16.5	2025-06-10 Expired
1.15	2024-06-05	1.15.5	2025-02-03 Expired
1.14	2024-01-31	1.14.7	2024-10-03 Expired
1.13	2023-09-12	1.13.6	2024-06-05 Expired
1.12	2023-05-19	1.12.17	2025-05-19 Expired	LTS
1.11	2023-01-11	1.11.5	2023-09-12 Expired
1.10	2022-10-17	1.10.2	2023-05-19 Expired

Maintained Soon (≤ 180 days) Expired

Subscribe lifecycle: RSS · RSS (expired) · ICS

Subscribe CVEs: RSS for “cert-manager” · RSS (High+Critical only)

CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).

CVSS ≥ 0.0

2026-04-15

Medium

CVE-2026-39350

Istio is an open platform to connect, manage, and secure microservices. In versions 1.25.0 through 1.27.8, 1.28.0 through 1.28.5, 1.29.0, and 1.29.1, the serviceAccounts and notServiceAccounts fields…

CVSS: 5.4 CWE: CWE-185 - Incorrect Regular Expression View on NVD

2026-02-04

Medium

CVE-2026-25518

cert-manager adds certificates and certificate issuers as resource types in Kubernetes clusters, and simplifies the process of obtaining, renewing and using those certificates. In versions from 1.18.…

CVSS: 5.9 CWE: CWE-129 - Improper Validation of Array Index View on NVD

2024-12-12

Medium

CVE-2024-12401

A flaw was found in the cert-manager package. This flaw allows an attacker who can modify PEM data that the cert-manager reads, for example, in a Secret resource, to use large amounts of CPU in the c…

CVSS: 4.4 CWE: CWE-20 - Improper Input Validation View on NVD

2024-07-24

High

CVE-2024-36537

Insecure permissions in cert-manager v1.14.4 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.

CVSS: 7.2 CWE: CWE-284 - Improper Access Control View on NVD

2024-04-12

Critical

CVE-2024-28718

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the cert_manager.py. component.

CVSS: 9.8 CWE: CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition View on NVD

2023-08-09

Medium

CVE-2023-39002

A cross-site scripting (XSS) vulnerability in the act parameter of system_certmanager.php in OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to execute arbi…

CVSS: 6.1 CWE: CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') View on NVD