Lucene search
K

37045 matches found

OSV
OSV
added 2026/06/27 12:0 a.m.4 views

OPENSUSE-SU-2026:11136-1 ocaml-4.14.4-1.1 on GA media

These are all security issues fixed in the ocaml-4.14.4-1.1 package on the GA media of openSUSE Tumbleweed...

7.9CVSS5.8AI score0.0021EPSS
Exploits0References2
OSV
OSV
added 2026/06/27 12:0 a.m.3 views

OPENSUSE-SU-2026:11138-1 jupyter-jupyterlab-templates-0.5.3-2.1 on GA media

These are all security issues fixed in the jupyter-jupyterlab-templates-0.5.3-2.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00782EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/26 12:8 a.m.4 views

CVE-2026-10804

A flaw was found in Streamlit, within its Palette Handler component. This vulnerability stems from the use of a weak hashing algorithm. A local attacker could exploit this flaw, though it requires a high level of technical complexity. Successful exploitation may lead to a low impact on the...

4.7CVSS5.8AI score0.00083EPSS
Exploits0References10
NVD
NVD
added 2026/06/25 4:16 p.m.8 views

CVE-2026-9717

CWE-78 Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability exists that could allow unauthorized execution of commands with elevated privileges, impacting system integrity, confidentiality, and availability when a privileged authenticated user interacts wi...

8.6CVSS0.01191EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 3:5 p.m.5 views

EUVD-2026-39434

CWE-78 Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability exists that could allow unauthorized execution of commands with elevated privileges, impacting system integrity, confidentiality, and availability when a privileged authenticated user interacts wi...

8.6CVSS6AI score0.01191EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 9:31 a.m.7 views

EUVD-2026-39189

The Tourfic – AI Powered Travel Booking, Hotel Booking & Car Rental WordPress Plugin plugin for WordPress is vulnerable to generic SQL Injection via the 'postid' parameter in all versions up to, and including, 2.22.7 due to insufficient escaping on the user supplied parameter and lack of sufficie...

7.5CVSS6AI score0.00304EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/25 4:48 a.m.5 views

EUVD-2026-39180

shell-quote prior to 1.8.5 finalizes parsed tokens in parse using Array.prototype.concat as a reduce accumulator, which reallocates and copies the entire growing array on every iteration. As a result parse runs in On^2 time relative to the number of input tokens. An attacker who can supply an...

8.7CVSS6.3AI score0.0036EPSS
Exploits0References2
OSV
OSV
added 2026/06/25 12:0 a.m.2 views

OPENSUSE-SU-2026:11118-1 jackson-databind-2.18.8-1.1 on GA media

These are all security issues fixed in the jackson-databind-2.18.8-1.1 package on the GA media of openSUSE Tumbleweed...

8.1CVSS5.8AI score0.00677EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 12:0 a.m.2 views

OPENSUSE-SU-2026:11117-1 giflib-devel-32bit-5.2.2-4.1 on GA media

These are all security issues fixed in the giflib-devel-32bit-5.2.2-4.1 package on the GA media of openSUSE Tumbleweed...

8.2CVSS5.8AI score0.00618EPSS
Exploits1References1
OSV
OSV
added 2026/06/25 12:0 a.m.2 views

OPENSUSE-SU-2026:11121-1 corepack24-24.17.0-1.1 on GA media

These are all security issues fixed in the corepack24-24.17.0-1.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS5.8AI score0.0251EPSS
Exploits3References21
RedhatCVE
RedhatCVE
added 2026/06/24 8:38 p.m.6 views

CVE-2026-12770

A flaw was found in BerriAI litellm. A remote attacker could exploit an improper authorization vulnerability within the Admin Key Handler component. This could allow the attacker to perform unauthorized actions, leading to limited impacts on data integrity and service availability...

8.8CVSS5.9AI score0.00337EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/06/24 3:36 p.m.4 views

CVE-2025-61025

A flaw was found in virtuoso-opensource. Attackers can exploit this vulnerability by sending specially crafted SQL statements, which can lead to a Denial of Service DoS. This issue impacts the availability of the affected system...

7.5CVSS5.8AI score0.0035EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/06/23 12:13 p.m.9 views

CVE-2026-56762 Hono - Missing Cookie Name Validation in setCookie()

Hono before 4.12.12 does not validate cookie names on the write path in the setCookie, serialize, and serializeSigned functions, allowing invalid characters such as control characters e.g. \r or \n when an application passes a user-controlled cookie name. This can produce malformed Set-Cookie...

6.9CVSS5.9AI score0.00247EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/23 10:55 a.m.7 views

Important: Red Hat Security Advisory: Assisted Installer RHEL 8 components for Multicluster Engine for Kubernetes 2.6.12

Assisted installer RHEL 8 components for the multicluster engine for Kubernetes 2.6.12 General Availability release, with updates to container images. Assisted Installer RHEL 8 integrates components for the general multicluster engine for Kubernetes 2.6.12 release that simplify the process of...

7.5CVSS7.3AI score0.00651EPSS
Exploits0References3
NVD
NVD
added 2026/06/23 8:16 a.m.6 views

CVE-2026-10521

An high privileged remote attacker can access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters. This can result in a total loss of confidentiality, integrity and availability...

8.6CVSS0.00306EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/23 7:34 a.m.8 views

EUVD-2026-38422

An high privileged remote attacker can access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters. This can result in a total loss of confidentiality, integrity and availability...

8.6CVSS6AI score0.00306EPSS
Exploits0References1
OSV
OSV
added 2026/06/23 12:0 a.m.2 views

OPENSUSE-SU-2026:11110-1 nodejs26-26.3.1-1.1 on GA media

These are all security issues fixed in the nodejs26-26.3.1-1.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS7.1AI score0.26356EPSS
Exploits3References37
Positive Technologies
Positive Technologies
added 2026/06/22 12:0 a.m.4 views

PT-2020-8615

This update for xar fixes the following issues: Changes in xar: - Switch to the maintained Apple xar lineage build 503, versioned 1.8.0.0.503: the mackyle 1.6.1 fork this package tracked has been dead since 2012, and Debian, Fedora and Gentoo all moved to Apple's xar apple-oss-distributions/xar...

9.8CVSS7.1AI score0.01935EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/06/22 12:0 a.m.3 views

PT-2020-8614

This update for xar fixes the following issues: Changes in xar: - Switch to the maintained Apple xar lineage build 503, versioned 1.8.0.0.503: the mackyle 1.6.1 fork this package tracked has been dead since 2012, and Debian, Fedora and Gentoo all moved to Apple's xar apple-oss-distributions/xar...

9.8CVSS7.1AI score0.01935EPSS
Exploits0References10
OSV
OSV
added 2026/06/22 12:0 a.m.2 views

OPENSUSE-SU-2026:11091-1 kubevirt1.8-container-disk-1.8.3-1.1 on GA media

These are all security issues fixed in the kubevirt1.8-container-disk-1.8.3-1.1 package on the GA media of openSUSE Tumbleweed...

9.1CVSS7AI score0.99999EPSS
Exploits22References9
Rows per page
Query Builder