Lucene search
K

252 matches found

CNNVD
CNNVD
added 2026/05/09 12:0 a.m.10 views

Bubblewrap 安全漏洞

Bubblewrap is a set of open-source, non-privileged sandbox tools developed by Containers. Versions of Bubblewrap from 0.11.0 to 0.11.2 contained security vulnerabilities. These vulnerabilities stemmed from the ability for users to attach to Bubblewrap using setuid mode and control the...

8.7CVSS5.8AI score0.00274EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/05 12:0 a.m.11 views

bubblewrap-0.11.2-1.1 on GA media (moderate)

bubblewrap-0.11.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10671-1 Rating: moderate Cross-References: CVE-2026-41163 CVSS scores: CVE-2026-41163 SUSE : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2026-41163 SUSE : 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...

7.3CVSS5.8AI score0.00274EPSS
Exploits0
OSV
OSV
added 2026/05/04 12:0 a.m.8 views

OPENSUSE-SU-2026:10671-1 bubblewrap-0.11.2-1.1 on GA media

These are all security issues fixed in the bubblewrap-0.11.2-1.1 package on the GA media of openSUSE Tumbleweed...

8.7CVSS5.8AI score0.00274EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-41163

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bubblewrap is a low-level unprivileged sandboxing tool. From version 0.11.0 to before version 0.11.2, if bubblewrap is installed in setuid mode then the user ca...

8.7CVSS5.8AI score0.00274EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.8 views

Claude Code 安全漏洞

Claude Code is an open-source terminal-native AI programming tool developed by Anthropic. Versions of Claude Code prior to 2.1.2 contained a security vulnerability. This vulnerability stemmed from the bubblewrap sandbox mechanism, which failed to properly protect the.claude/settings.json file whe...

10CVSS5.9AI score0.00416EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.17 views

PT-2026-6858

Claude Code's bubblewrap sandboxing mechanism failed to properly protect the .claude/settings.json configuration file when it did not exist at startup. While the parent directory was mounted as writable and .claude/settings.local.json was explicitly protected with read-only constraints,...

7.7CVSS5.7AI score0.00416EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : flatpak-1.0.9-13.0.1.el7.AXS7 (AXSA:2024-8901:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8901:07 advisory. CVE-2024-42472: access to files outside sandbox for apps using persistent directories CVEs: CVE-2024-42472 Flatpak is a Linux application sandboxing and...

10CVSS7.8AI score0.01283EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : bubblewrap and flatpak (AXSA:2024-8787:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8787:02 advisory. flatpak: Access to files outside sandbox for apps using persistent= --persist CVE-2024-42472 Tenable has extracted the preceding description block directly...

10CVSS5.6AI score0.01283EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 9 : bubblewrap-0.4.1-8.el9, flatpak-1.12.9-3.el9 (AXSA:2024-9109:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9109:02 advisory. flatpak: Access to files outside sandbox for apps using persistent= --persist CVE-2024-42472 Tenable has extracted the preceding description block directly...

10CVSS5.6AI score0.01283EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.9 views

MiracleLinux 8 : bubblewrap-0.4.0-2.el8_10, flatpak-1.12.9-3.el8_10 (AXSA:2024-8785:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8785:01 advisory. flatpak: Access to files outside sandbox for apps using persistent= --persist CVE-2024-42472 Tenable has extracted the preceding description block directly...

10CVSS5.6AI score0.01283EPSS
Exploits1References2
Mageia
Mageia
added 2025/11/19 2:16 a.m.17 views

Updated flatpak & bubblewrap packages fix security vulnerability

Flatpak may allow access to files outside sandbox for certain apps. CVE-2024-42472...

10CVSS7.1AI score0.01283EPSS
Exploits1References2
OSV
OSV
added 2025/11/19 2:16 a.m.5 views

MGASA-2025-0303 Updated flatpak & bubblewrap packages fix security vulnerability

Flatpak may allow access to files outside sandbox for certain apps. CVE-2024-42472...

10CVSS6.9AI score0.01283EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/11/19 12:0 a.m.0 views

Mageia: Security Advisory (MGASA-2025-0303)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.01283EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-3134

Malware in sbrugna...

7.8CVSS8.4AI score0.00348EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-4048

Malware in sbrugna...

7.8CVSS7.5AI score0.00494EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-9498

Malware in sbrugna...

7CVSS6.8AI score0.00399EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-14331

Malware in sbrugna...

10CVSS7.6AI score0.03169EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-26485

Malware in sbrugna...

8.5CVSS6.9AI score0.00907EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-39634

Malicious code in bioql PyPI...

10CVSS8.3AI score0.01283EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-30279

Malicious code in bioql PyPI...

8.4CVSS8.2AI score0.00512EPSS
Exploits1References8
Rows per page
Query Builder