diff --git a/kubernetes-csi-external-attacher.advisories.yaml b/kubernetes-csi-external-attacher.advisories.yaml
new file mode 100644
index 0000000000..6ee73ccff0
--- /dev/null
+++ b/kubernetes-csi-external-attacher.advisories.yaml
@@ -0,0 +1,23 @@
+schema-version: 2.0.2
+
+package:
+  name: kubernetes-csi-external-attacher
+
+advisories:
+  - id: CGA-mmv9-3px3-gxv8
+    aliases:
+      - CVE-2024-45338
+      - GHSA-w32m-9786-jp63
+    events:
+      - timestamp: 2024-12-19T20:41:25Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: kubernetes-csi-external-attacher
+            componentID: 755733cf92df69c4
+            componentName: golang.org/x/net
+            componentVersion: v0.28.0
+            componentType: go-module
+            componentLocation: /usr/bin/csi-attacher
+            scanner: grype