15 matches found
ROOT-APP-GOBINARY-CVE-2026-42506 CVE-2026-42506 in rootio-golang.org/x/net - Patched by Root
Root has patched CVE-2026-42506 in the rootio-golang.org/x/net package for Root:Go. Multiple fixed versions available...
Amazon Linux 2 : docker, --advisory ALAS2NITRO-ENCLAVES-2026-110 (ALASNITRO-ENCLAVES-2026-110)
The version of docker installed on the remote host is prior to 25.0.16-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2NITRO-ENCLAVES-2026-110 advisory. Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service. CVE-2026-25680...
Amazon Linux 2 : docker, --advisory ALAS2DOCKER-2026-129 (ALASDOCKER-2026-129)
The version of docker installed on the remote host is prior to 25.0.16-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2026-129 advisory. Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service. CVE-2026-25680 Parsing...
CVE-2026-42506 affecting package kubernetes for versions less than 1.30.10-25
CVE-2026-42506 affecting package kubernetes for versions less than 1.30.10-25. A patched version of the package is available...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: kubernetes-dashboard, snyk-cli, traefik, vale, caddy, minio, terraform-provider-acme, hubble, telegraf, crossplane-provider-azure-storage, vitess, grafana-pyroscope, cilium, kubernetes, gitea, k3s, step, gptscript, nerdctl, fq, flux, prometheus-operator, helm,...
CVE-2026-42506 affecting package containerized-data-importer for versions less than 1.62.0-5
CVE-2026-42506 affecting package containerized-data-importer for versions less than 1.62.0-5. A patched version of the package is available...
CVE-2026-42506 affecting package influxdb for versions less than 2.7.5-17
CVE-2026-42506 affecting package influxdb for versions less than 2.7.5-17. A patched version of the package is available...
CVE-2026-42506 affecting package cri-tools for versions less than 1.32.0-6
CVE-2026-42506 affecting package cri-tools for versions less than 1.32.0-6. A patched version of the package is available...
CVE-2026-42506 affecting package cloud-provider-kubevirt for versions less than 0.5.1-4
CVE-2026-42506 affecting package cloud-provider-kubevirt for versions less than 0.5.1-4. A patched version of the package is available...
CVE-2026-42506 affecting package docker-compose for versions less than 2.27.0-11
CVE-2026-42506 affecting package docker-compose for versions less than 2.27.0-11. A patched version of the package is available...
CVE-2026-42506 affecting package gh for versions less than 2.62.0-16
CVE-2026-42506 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...
BELL-CVE-2026-42506
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2026-42506
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications...
CVE-2026-42506
creationtimestamp| type| source ---|---|--- 2026-05-22 16:35:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmhej6i35b2c 2026-06-30 01:29:32+00:00| seen| https://gist.github.com/illoyd/2131d93f5933897a469738feaf75a3e9...
CVE-2026-42506
Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering...