77 matches found
MINI-6587-7J5H-M5RR
Bulletin has no description...
CVE-2026-6587
creationtimestamp| type| source ---|---|--- 2026-04-20 03:54:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjvl2loijv2o...
agentic-layer-testbench (>=0.9.1 <=0.9.3), agentic-qa (>=0.1.0 <=0.2.1) +56 more potentially affected by CVE-2026-6587 via ragas (>=0.2.6 <=0.4.3)
ragas PYPI version =0.2.6, =0.9.1, =0.1.0, =0.1.2, =0.1.0a1, =1.0.8, =0.1.6, =11.1.12, =0.20.24, =0.1.1, =1.0.0, =1.1.0, =0.1.0, =0.1.0, =0.1.4 and more Source cves: CVE-2026-6587 Source advisory: OSV:GHSA-95WW-475F-PR4F...
agentic-layer-testbench (>=0.9.1 <=0.9.3), agentic-qa (>=0.1.0 <=0.2.1) +56 more potentially affected by CVE-2025-45691 +1 more via ragas (>=0.2.6 <=0.4.3)
ragas PYPI version =0.2.6, =0.9.1, =0.1.0, =0.1.2, =0.1.0a1, =1.0.8, =0.1.6, =11.1.12, =0.20.24, =0.1.1, =1.0.0, =1.1.0, =0.1.0, =0.1.0, =0.1.4 and more Source cves: CVE-2025-45691, CVE-2026-6587 Source advisory: SNYK:PYTHON-RAGAS-16134617...
CVE-2026-6587
A security flaw has been discovered in vibrantlabsai RAGAS up to 0.4.3. The affected element is the function tryprocesslocalfile/tryprocessurl of the file src/ragas/metrics/collections/multimodalfaithfulness/util.py of the component Collections Module. Performing a manipulation of the argument...
CVE-2026-6587
CVE-2026-6587 affects vibrantlabsai RAGAS
CVE-2025-6587
creationtimestamp| type| source ---|---|--- 2025-07-03 11:35:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lt2n5p6moi2r...
CVE-2025-6587 Exposure of system environment variables in Docker Desktop diagnostic logs
System environment variables are recorded in Docker Desktop diagnostic logs, when using shell auto-completion. This leads to unintentional disclosure of sensitive information such as api keys, passwords, etc. A malicious actor with read access to these logs could obtain secrets and further use...
CVE-2024-6587
A Server-Side Request Forgery SSRF vulnerability exists in berriai/litellm version 1.38.10. This vulnerability allows users to specify the apibase parameter when making requests to POST /chat/completions, causing the application to send the request to the domain specified by apibase. This request...
CVE-2024-6587
creationtimestamp| type| source ---|---|--- 2024-09-13 18:48:15+00:00| seen| https://t.me/cvedetector/5622 2025-03-09 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-03-09 2025-03-14 15:30:06+00:00| exploited| https://t.me/truesecator/6843 2026-06-23...
01os (>=0.0.1 <=0.0.13), agenta (>=0.14.1a0 <=0.14.7a1) +104 more potentially affected by CVE-2024-6587 via litellm (>=0.1.400 <=1.44.7)
litellm PYPI version =0.1.400, =0.0.1, =0.14.1a0, =0.0.5, =0.0.4, =1.0.3, =0.2.0, =0.29.0, =0.1.5, =0.1.0, =0.1.0, =0.0.1, =0.1.10 - bbook-maker =0.5.1 and more Source cves: CVE-2024-6587 Source advisory: OSV:GHSA-G26J-5385-HHW3...
CGA-R62C-6587-J47J
Bulletin has no description...
Ubuntu 16.04 ESM / 18.04 ESM : X.Org X Server regression (USN-6587-4)
The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6587-4 advisory. USN-6587-1 fixed vulnerabilities in X.Org X Server. The fix was incomplete resulting in a possible regression. This update fixes the problem. Tenable...
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : X.Org X Server regression (USN-6587-3)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6587-3 advisory. USN-6587-1 fixed vulnerabilities in X.Org X Server. The fix was incomplete resulting in a possible regression. This update fixes the problem. ...
Ubuntu: Security Advisory (USN-6587-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : X.Org X Server vulnerabilities (USN-6587-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6587-1 advisory. Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled memory when processing the DeviceFocusEvent and...
Oracle Linux 9 : opensc (ELSA-2023-6587)
The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-6587 advisory. - Fix CVE-2023-2977: buffer overrun in pkcs15init for cardos Tenable has extracted the preceding description block directly from the Oracle Linux security...
Mageia: Security Advisory (MGASA-2015-0037)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:0503-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2016-6587
CVE-2016-6587 affects Symantec Norton Mobile Security for Android before 3.16. An information-disclosure flaw exists in the mid.dat file stored on the SD card, allowing a local attacker to obtain sensitive information. The vulnerability is described as a local information disclosure with confiden...