Lucene search
K

153 matches found

Chainguard
Chainguard
added 2 days ago6 views

CVE-2026-53228 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-azure, linux-gcp, linux-qemu...

9.8CVSS5.9AI score0.00559EPSS
Exploits0
Chainguard
Chainguard
added 2 days ago4 views

GHSA-WFX4-V2WF-4GMP vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-azure, linux-gcp, linux-qemu...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2 days ago4 views

GHSA-PW9R-H2M6-6VVG vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-azure, linux-gcp, linux-qemu...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2 days ago6 views

CVE-2026-53216 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-azure, linux-gcp, linux-qemu...

9.8CVSS5.9AI score0.00546EPSS
Exploits0
Chainguard
Chainguard
added 2 days ago5 views

GHSA-JPVF-6235-4RH8 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-azure, linux-gcp, linux-qemu...

5.9AI score
Exploits0
Snyk
Snyk
added 2026/06/06 9:0 p.m.15 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...

9.8CVSS5.6AI score
Exploits0References2
Microsoft Secure
Microsoft Secure
added 2026/05/18 10:42 p.m.60 views

How Storm-2949 turned a compromised identity into a cloud-wide breach

In this article 1. Attack chain overview 1. Cloud compromise: Microsoft Entra ID and Microsoft 365 2. Initial access and persistence through targeted social engineering and SSPR abuse 3. Directory discovery and persistence 4. Microsoft 365 discovery and exfiltration 5. Cloud compromise: Microsoft...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/05/16 1:18 a.m.13 views

CVE-2026-43109 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-azure, linux-gcp, linux-qemu...

5.5CVSS6.5AI score0.00114EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/16 1:18 a.m.9 views

GHSA-H53C-6597-VMFW vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-azure, linux-gcp, linux-qemu...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/05/16 1:18 a.m.12 views

GHSA-R5QW-5M8Q-6774 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-azure, linux-gcp, linux-qemu...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/13 8:22 p.m.14 views

CVE-2026-33117

The Java Key Vault Keys library in the Azure SDK for Java contains an issue in the local cryptographic verification path where authentication tag comparison was implemented incorrectly. In affected applications that use the vulnerable local cryptography path, specially crafted encrypted input may...

9.1CVSS6AI score0.00479EPSS
Exploits0References1
Microsoft Secure
Microsoft Secure
added 2026/05/12 4:0 p.m.10 views

Defending consumer web properties against modern DDoS attacks

If you own, create, or maintain online services and web portals, you’re probably aware of the dramatic upswing in DDoS attacks on your domains. AI has democratized tooling not just for us but for threat actors as well. DDoS in this era has extended from simple bandwidth saturation to sophisticate...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/09 2:21 a.m.9 views

CVE-2026-35428

Improper neutralization of special elements used in a command 'command injection' in Azure Cloud Shell allows an unauthorized attacker to perform spoofing over a network...

9.6CVSS5.8AI score0.00933EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/08 12:31 a.m.37 views

EUVD-2026-28453

Improper neutralization of special elements used in a command 'command injection' in Azure Cloud Shell allows an unauthorized attacker to perform spoofing over a network...

9.6CVSS5.8AI score0.00933EPSS
Exploits0References2
NVD
NVD
added 2026/05/07 10:16 p.m.64 views

CVE-2026-35428

Improper neutralization of special elements used in a command 'command injection' in Azure Cloud Shell allows an unauthorized attacker to perform spoofing over a network...

9.6CVSS0.00933EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/07 8:58 p.m.83 views

CVE-2026-35428 Azure Cloud Shell Spoofing Vulnerability

...

9.6CVSS0.00933EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/07 8:58 p.m.6 views

CVE-2026-35428

Improper neutralization of special elements used in a command 'command injection' in Azure Cloud Shell allows an unauthorized attacker to perform spoofing over a network...

9.6CVSS5.8AI score0.00933EPSS
Exploits0References2
CVE
CVE
added 2026/05/07 8:58 p.m.21 views

CVE-2026-35428

CVE-2026-35428 affects Azure Cloud Shell and is described as improper neutralization of special elements used in a command (command injection) that allows an unauthorized attacker to perform spoofing over a network. The available references consistently attribute the issue to command injection wi...

9.6CVSS5.8AI score0.00933EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/07 8:58 p.m.9 views

CVE-2026-35428 Azure Cloud Shell Spoofing Vulnerability

...

9.6CVSS5.8AI score0.00933EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/05/07 2:0 p.m.24 views

Azure Cloud Shell Spoofing Vulnerability

Improper neutralization of special elements used in a command 'command injection' in Azure Cloud Shell allows an unauthorized attacker to perform spoofing over a network...

9.6CVSS5.8AI score0.00933EPSS
Exploits0
Rows per page
Query Builder