CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

153 matches found

Rockylinux•added 2026/05/21 4:27 p.m.•6 views

grafana-pcp security and enhancement update

An update is available for grafana-pcp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Grafana plugin for Performance Co-Pilot includes datasources for...

7.5CVSS6.9AI score0.02513EPSS

Exploits0

Tenable Nessus•added 2026/05/04 12:0 a.m.•10 views

RHCOS 4 : OpenShift Container Platform 4.11.17 (RHSA-2022:8626)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:8626 advisory. - golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 - golang: net/http: handle server errors after...

7.5CVSS7AI score0.02513EPSS

Exploits3References12

OSV•added 2026/04/07 6:46 p.m.•6 views

USN-8089-3 adsys, juju-core, lxd vulnerabilities

USN-8089-1 fixed vulnerabilities in Go Networking. This update provides the corresponding update to code vendored in LXD, ADSys, and Juju Core. Original advisory details: Bahruz Jabiyev, Tommaso Innocenti, Anthony Gavazzi, Steven Sprecher, and Kaan Onarlioglu discovered that servers using Go...

7.5CVSS6.9AI score0.07492EPSS

Exploits1References8

Tenable Nessus•added 2026/01/20 12:0 a.m.•5 views

MiracleLinux 8 : cockpit-composer-45-1.el8, osbuild-composer-75-1.el8.ML.1, osbuild-81-1.el8.ML.1, weldr-client-35.9-2.el8 (AXSA:2023-6087:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6087:04 advisory. golang: archive/tar: unbounded memory consumption when reading headers CVE-2022-2879 golang: net/http/httputil: ReverseProxy should not forward...

7.5CVSS7.8AI score0.05623EPSS

Exploits1References6

Tenable Nessus•added 2026/01/20 12:0 a.m.•4 views

MiracleLinux 8 : grafana-pcp-3.2.0-3.el8 (AXSA:2023-6080:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6080:03 advisory. golang: net/http: handle server errors after sending GOAWAY CVE-2022-27664 Tenable has extracted the preceding description block directly from the MiracleLin...

7.5CVSS7.7AI score0.02513EPSS

Exploits0References2

Tenable Nessus•added 2025/06/16 12:0 a.m.•8 views

TencentOS Server 3: grafana-pcp (TSSA-2023:0099)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0099 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7AI score0.02513EPSS

Exploits2References8

Tenable Nessus•added 2025/06/16 12:0 a.m.•5 views

TencentOS Server 3: container-tools (TSSA-2023:0109)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0109 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.5AI score0.05623EPSS

Exploits5References15

Tenable Nessus•added 2025/06/16 12:0 a.m.•8 views

TencentOS Server 3: cockpit-composer (TSSA-2023:0135)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0135 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS6.9AI score0.05623EPSS

Exploits1References6

Tenable Nessus•added 2025/06/16 12:0 a.m.•7 views

TencentOS Server 3: osbuild (TSSA-2023:0105)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0105 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS6.9AI score0.05623EPSS

Exploits1References6

Tenable Nessus•added 2025/05/14 12:0 a.m.•10 views

Alibaba Cloud Linux 3 : 0075: grafana (ALINUX3-SA-2023:0075)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2023:0075 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-2880: Requests forwarded by...

7.5CVSS7.1AI score0.02513EPSS

Exploits1References5

OSV•added 2025/05/07 7:11 p.m.•7 views

RLSA-2024:0121 Moderate: container-tools:4.0 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang: archive/tar: unbounded memory consumption when reading headers CVE-2022-2879 golang: net/http/httputil: ReverseProxy should not forward unparseable query...

7.5CVSS7.2AI score0.02513EPSS

Exploits1References10

Amazon•added 2025/04/29 12:0 a.m.•3 views

Medium: docker

Issue Overview: In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error. CVE-2022-27664 Affected Packages: docker Note: This advisory is applicable to Amazon...

7.5CVSS6.9AI score0.02513EPSS

Exploits0

Tenable Nessus•added 2025/04/29 12:0 a.m.•11 views

Amazon Linux 2 : docker (ALASNITRO-ENCLAVES-2025-059)

The version of docker installed on the remote host is prior to 20.10.17-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2NITRO-ENCLAVES-2025-059 advisory. In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2...

7.5CVSS7AI score0.02513EPSS

Exploits0References4

IBM Security Bulletins•added 2025/04/04 9:17 p.m.•25 views

Security Bulletin: IBM Storage Fusion Data Foundation is vulnerable to multiple software weaknesses due to Golang

Summary Golang Go is vulnerable to a denial of service, which could allow a remote attacker to conduct query parameter smuggling and could allow a local attacker to execute arbitrary code on the system. Golang is used by IBM Storage Fusion Data Foundation as a core part of operators. This bulleti...

9.8CVSS9.4AI score0.1593EPSS

Exploits3Affected Software1

OpenVAS•added 2025/03/26 12:0 a.m.•7 views

openSUSE Security Advisory (openSUSE-SU-2025:0103-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.6AI score0.02513EPSS

Exploits0References4

OPENSUSE Linux•added 2025/03/24 12:0 a.m.•4 views

Security update for cadvisor (moderate)

openSUSE Security Update: Security update for cadvisor Announcement ID: openSUSE-SU-2025:0103-1 Rating: moderate References: 1222192 1239291 Cross-References: CVE-2022-27664 CVE-2025-22868 CVSS scores: CVE-2022-27664 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-22868 SUSE: 8.7...

8.7CVSS6.8AI score0.02513EPSS

Exploits0References2

Tenable Nessus•added 2025/03/05 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2022-27664

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdo...

7.5CVSS6.8AI score0.02513EPSS

Exploits0References4