27 matches found
ROOT-APP-GOBINARY-CVE-2026-42506 CVE-2026-42506 in rootio-golang.org/x/net - Patched by Root
Root has patched CVE-2026-42506 in the rootio-golang.org/x/net package for Root:Go. Multiple fixed versions available...
grafana-11.6.14+security04-3.1 on GA media (moderate)
grafana-11.6.14+security04-3.1 on GA media Announcement ID: openSUSE-SU-2026:11013-1 Rating: moderate Cross-References: CVE-2026-25680 CVE-2026-42506 CVSS scores: CVE-2026-25680 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-25680 SUSE : 8.7...
Amazon Linux 2 : docker, --advisory ALAS2DOCKER-2026-129 (ALASDOCKER-2026-129)
The version of docker installed on the remote host is prior to 25.0.16-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2026-129 advisory. Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service. CVE-2026-25680 Parsing...
Amazon Linux 2 : docker, --advisory ALAS2NITRO-ENCLAVES-2026-110 (ALASNITRO-ENCLAVES-2026-110)
The version of docker installed on the remote host is prior to 25.0.16-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2NITRO-ENCLAVES-2026-110 advisory. Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service. CVE-2026-25680...
CVE-2026-42506 affecting package kubernetes for versions less than 1.30.10-25
CVE-2026-42506 affecting package kubernetes for versions less than 1.30.10-25. A patched version of the package is available...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: step-issuer, telegraf, caddy, hydra, ingress-nginx-controller, kubernetes, step, hubble, istio, snyk-cli, kubernetes-dashboard, terraform-provider-acme, crossplane-provider-azure-authorization, prometheus, vitess, crossplane-provider-aws-elasticache, helm, flux,...
CVE-2026-42506 vulnerabilities
Vulnerabilities for packages: etcd-fips, mattermost-fips, telegraf, ingress-nginx-controller-fips, caddy, crossplane-provider-azure-authorization, tenv, zitadel, prometheus, crossplane-provider-azure-policyinsights, frankenphp-8.5, crossplane-provider-azure-servicelinker, karpenter-fips, glab,...
CVE-2026-42506 affecting package influxdb for versions less than 2.7.5-17
CVE-2026-42506 affecting package influxdb for versions less than 2.7.5-17. A patched version of the package is available...
CVE-2026-42506 affecting package containerized-data-importer for versions less than 1.62.0-5
CVE-2026-42506 affecting package containerized-data-importer for versions less than 1.62.0-5. A patched version of the package is available...
CVE-2026-42506 affecting package cri-tools for versions less than 1.32.0-6
CVE-2026-42506 affecting package cri-tools for versions less than 1.32.0-6. A patched version of the package is available...
CVE-2026-42506 affecting package cloud-provider-kubevirt for versions less than 0.5.1-4
CVE-2026-42506 affecting package cloud-provider-kubevirt for versions less than 0.5.1-4. A patched version of the package is available...
CVE-2026-42506 affecting package gh for versions less than 2.62.0-16
CVE-2026-42506 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...
CVE-2026-42506 affecting package docker-compose for versions less than 2.27.0-11
CVE-2026-42506 affecting package docker-compose for versions less than 2.27.0-11. A patched version of the package is available...
BELL-CVE-2026-42506
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2026-42506
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications...
CVE-2026-42506
creationtimestamp| type| source ---|---|--- 2026-05-22 16:35:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmhej6i35b2c 2026-06-30 01:29:32+00:00| seen| https://gist.github.com/illoyd/2131d93f5933897a469738feaf75a3e9...
CVE-2026-42506
Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering...
EUVD-2025-42506
Malicious code in putra-serabi75-miaww npm...
CVE-2023-42506
Improper restriction of operations within the bounds of a memory buffer issue exists in OnSinView2 versions 2.0.1 and earlier. If this vulnerability is exploited, information may be disclosed or arbitrary code may be executed by having a user open a specially crafted OnSinView2 project file...
CVE-2024-42506
creationtimestamp| type| source ---|---|--- 2024-09-26 19:30:05+00:00| seen| https://t.me/truesecator/6254 2024-09-27 08:45:27+00:00| seen| https://t.me/icscert/923...