CVE-2022-26054

Operation restriction bypass vulnerability in Link of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to alter the data of Link...

CVE-2025-26054

Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting XSS via the "Description" field during LAN configuration...

CVE-2025-26054

creationtimestamp| type| source ---|---|--- 2025-03-07 18:28:28+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/17480 2025-03-07 22:00:06+00:00| seen| Telegram/3MBTytBz7FAWoUgV2aTVPXaX-kfAuOLht6JlK6Rxm9ll3c 2025-04-01 18:32:48+00:00| published-proof-of-concept|...

CVE-2024-26054 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

Mageia: Security Advisory (MGASA-2023-0329)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated docker packages fix security vulnerabilities and bugs

This update fixes several security issues and also solves some other issues - manage change of launch option earlier in post process - Automatically convert -g option to --data-root in installed /etc/sysconfig/docker-storage - Fix CVE-2023-26054 and CVE-2023-28840-2...

MGASA-2023-0329 Updated docker packages fix security vulnerabilities and bugs

This update fixes several security issues and also solves some other issues - manage change of launch option earlier in post process - Automatically convert -g option to --data-root in installed /etc/sysconfig/docker-storage - Fix CVE-2023-26054 and CVE-2023-28840-2...

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh for 2.4.4 security update

An update is now available for Red Hat OpenShift Service Mesh 2.4 for RHEL 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

Fedora: Security Advisory (FEDORA-2023-b9c1d0e4c5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 37 : moby-engine (2023-cf3551046d)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-cf3551046d advisory. - Update moby-engine to 24.0.5 - Security fix for CVE-2021-41803 - Security fix for CVE-2023-28842 - Security fix for CVE-2023-28841 - Security fix...

BELL-CVE-2023-26054 CVE-2023-26054 does not affect BellSoft software

Bulletin has no description...

Fedora: Security Advisory for moby-engine (FEDORA-2023-9f5f1ef40a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 38 : moby-engine (2023-9f5f1ef40a)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-9f5f1ef40a advisory. - Update moby-engine to 24.0.5 - Security fix for CVE-2021-41803 - Security fix for CVE-2023-28842 - Security fix for CVE-2023-28841 - Security fix...

CVE-2023-26054

A flaw was found in the moby buildkit. When a build is performed under specific conditions where credentials were passed to BuildKit, it may be visible to everyone with access to provenance attestation...

CVE-2023-26054

creationtimestamp| type| source ---|---|--- 2023-03-06 22:13:00+00:00| seen| https://t.me/cibsecurity/59501...

CVE-2023-26054 Credentials inlined to Git URLs could end up in provenance attestation in BuildKit

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In affected versions when the user sends a build request that contains a Git URL that contains credentials and the build creates a provenance attestation describing that build,...

CVE-2022-26054

Operation restriction bypass vulnerability in Link of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote authenticated attacker to alter the data of Link...

CVE-2022-26054

CVE-2022-26054 is an operation restriction bypass vulnerability in Cybozu Garoon’s Link component, affecting versions 4.0.0 through 5.5.1. The flaw—rooted in improper privilege management in Link—permits a remote authenticated attacker to alter Link data. Affects Cybozu Garoon (portal/ OA suite) ...

CVE-2021-26054

CVE-2021-26054 is rejected/not used as stated in the description.

CVE-2021-26054

...