Lucene search
K

10464 matches found

OSV
OSV
added 2026/02/04 8:43 p.m.5 views

GHSA-PHCG-H58R-GMCQ EVE Doesn't Measure Config Partition From 2 Fronts

Impact PCR14 is not included in the list of PCRs that seal/unseal the vault key. Additionally, the vault key uses SHA1 PCRs instead of SHA256. Thus an attacker with physical access can take out the disk, use a different computer to modify the files in the /config partition, and re-insert the disk...

5.2CVSS5.5AI score0.00107EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:8 p.m.4 views

CVE-2026-23085

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Avoid truncating memory addresses On 32-bit machines with CONFIGARMLPAE, it is possible for lowmem allocations to be backed by addresses physical memory above the 32-bit address limit, as found while...

5.1AI score0.00123EPSS
Exploits0References8Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/04 4:8 p.m.4 views

CVE-2026-23085 irqchip/gic-v3-its: Avoid truncating memory addresses

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Avoid truncating memory addresses On 32-bit machines with CONFIGARMLPAE, it is possible for lowmem allocations to be backed by addresses physical memory above the 32-bit address limit, as found while...

5.3AI score0.00123EPSS
Exploits0References7
EUVD
EUVD
added 2026/02/04 4:8 p.m.4 views

EUVD-2026-5457

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Avoid truncating memory addresses On 32-bit machines with CONFIGARMLPAE, it is possible for lowmem allocations to be backed by addresses physical memory above the 32-bit address limit, as found while...

5.1AI score0.00123EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.5 views

PT-2026-6358

Impact On boot, Pillar checks for /config/GlobalConfig/global.json and overrides system configuration if present. This allows enabling debug functions like SSH debug.enable.ssh, USB keyboard debug.enable.usb, and VNC access app.allow.vnc without triggering the measured boot. Thus, a user with...

8.8CVSS5.3AI score0.0016EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.14 views

PT-2026-6354

Impact On boot, the Pillar container checks for /config/authorized keys. If present with a valid public key, it enables SSH on port 22 with root login. The /config partition is not protected by measured boot, is mutable and unencrypted. This enables an attacker with physical access to the device ...

8.8CVSS5.5AI score0.0016EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.6 views

PT-2026-6461

Impact PCR14 is not included in the list of PCRs that seal/unseal the vault key. Additionally, the vault key uses SHA1 PCRs instead of SHA256. Thus an attacker with physical access can take out the disk, use a different computer to modify the files in the /config partition, and re-insert the disk...

8.8CVSS5.5AI score0.00107EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.4 views

PT-2026-6369

Impact Measured boot validates BIOS, grub, kernel cmdline, and initrd but not the entire rootfs. Thus, an attacker can create an EVE-OS rootfs squashfs image with some files modified and take out the disk and replace the existing rootfs image without that being detected by measure boot and remote...

8.8CVSS8AI score0.00125EPSS
Exploits0References8
Oracle linux
Oracle linux
added 2026/02/04 12:0 a.m.6 views

osbuild-composer security update

149-4.0.1 - Add missing dependency over dracut-config-rescue for image-installer Orabug: 38587453 - Add OL10 support - Update repository URLs for baseos, appstream and UERK - Fix the label for UEKR repository - Simplify repository names JIRA: OLDIS-35893 - Ensure build on latest golang:...

4.3CVSS5.4AI score0.01127EPSS
Exploits0
Spring Security Advisories
Spring Security Advisories
added 2026/02/03 12:0 a.m.5 views

This Week in Spring - February 3rd, 2026

Hi, Spring fans! This week I'm in northern Europe. I went on the Vaadin cruise from Finland to Sweden, gave a talk on a boat, then arrived in Stockholm in time for the amazing JFokus 2026 event where I had the privilege yesterday of doing a deep dive with my pal James Ward on Spring AI and agenti...

5.4AI score
Exploits0
OSV
OSV
added 2026/02/02 10:39 a.m.12 views

CLSA-2026-1770028764 kernel: Fix of 14 CVEs

efivarfs: Fix slab-out-of-bounds in efivarfsdcompare CVE-2025-39817 - scsi: ses: Fix possible descptr out-of-bounds accesses CVE-2023-53675 - ipv6: Fix out-of-bounds access in ipv6findtlv CVE-2023-53705 - libceph: fix potential use-after-free in havemonandosdmap CVE-2025-68285 - scsi: lpfc: Fix...

7.8CVSS6.8AI score0.00224EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2026/02/02 12:0 a.m.9 views

kernel security update

6.12.0-124.31.1 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...

7.8CVSS6AI score0.00544EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2026/02/02 12:0 a.m.6 views

EulerOS 2.0 SP13 : grub2 (EulerOS-SA-2026-1222)

According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string...

7.8CVSS5.7AI score0.0019EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.5 views

EulerOS Virtualization 2.10.0 : grub2 (EulerOS-SA-2026-1170)

According to the versions of the grub2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : GNU GRUB aka GRUB2 through 2.12 does not use a constant-time algorithm for grubcryptomemcmp and thus allows side-channel...

8.8CVSS6.6AI score0.01373EPSS
Exploits1References25
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.5 views

EulerOS Virtualization 2.10.1 : grub2 (EulerOS-SA-2026-1119)

According to the versions of the grub2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : GNU GRUB aka GRUB2 through 2.12 does not use a constant-time algorithm for grubcryptomemcmp and thus allows side-channel...

8.8CVSS6.6AI score0.01373EPSS
Exploits1References25
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.6 views

jshERP path traversal vulnerability

jshERP Huaxia ERP is a domestic ERP system developed by Ji Shenghua. Versions of jshERP 3.6 and earlier had a path traversal vulnerability. This vulnerability stemmed from incorrect handling of the parameter “path” in the file /jshERP-boot/plugin/installByPath, which could lead to path traversal...

5.1CVSS5.8AI score0.00592EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/01/29 12:0 a.m.5 views

Oracle Linux 8 : osbuild-composer (ELSA-2026-1380)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1380 advisory. 101.4-2.0.1 - Support using repository definitons with OCI variables JIRA: OLDIS-38657 - Update repositories to contain OCI variables - Remove image types...

4.3CVSS6AI score0.00419EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2026/01/29 12:0 a.m.19 views

January 29, 2026—KB5074105 (OS Builds 26200.7705 and 26100.7705) Preview

January 29, 2026—KB5074105 OS Builds 26200.7705 and 26100.7705 Preview ​​​​​This non-security update for Windows 11, version 25H2 and 24H2 KB5074105, improves functionality, performance, and reliability. To learn more about differences between security updates, optional non-security preview...

5.5AI score
Exploits0
NVD
NVD
added 2026/01/28 1:15 p.m.5 views

CVE-2020-36986

Prey 1.9.6 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in the CronService to insert malicious code that would execute during application startup or system reboot...

8.5CVSS0.0016EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/28 12:29 p.m.3 views

CVE-2020-36987

Program Access Controller 1.2.0.0 contains an unquoted service path vulnerability in PACService.exe that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path during system startup or reboot to inject and run malicious executables with LocalSyste...

8.5CVSS6.1AI score0.00157EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder