Adding Advisory CVE-2025-61727 for secrets-store-csi-driver (#27385)

octo-sts[bot] · dnegreira · web-flow · commit 89d36e75d0d7 · 2025-12-09T10:56:14.000Z
Co-authored-by: octo-sts[bot] &lt;157150467+octo-sts@users.noreply.github.com&gt;
Co-authored-by: David Negreira &lt;david.negreira@chainguard.dev&gt;
diff --git a/secrets-store-csi-driver.advisories.yaml b/secrets-store-csi-driver.advisories.yaml
@@ -400,6 +400,24 @@ advisories:
         data:
           fixed-version: 1.5.4-r3
 
+  - id: CGA-g37j-r3vv-2839
+    aliases:
+      - CVE-2025-61727
+      - GHSA-5mh9-3jwc-rp59
+    events:
+      - timestamp: 2025-12-06T15:52:43Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: secrets-store-csi-driver
+            componentID: e8807ffd9c983908
+            componentName: stdlib
+            componentVersion: go1.25.4
+            componentType: go-module
+            componentLocation: /usr/bin/secrets-store-csi
+            scanner: grype
+
   - id: CGA-gjx7-cw6j-235c
     aliases:
       - CVE-2025-58181
