Lucene search
K

138 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.6 views

RHCOS 4 : OpenShift Container Platform 4.18.6 (RHSA-2025:3068)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:3068 advisory. - go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 Note that Nessus has not tested for this issue but has instead...

8.7CVSS7.2AI score0.00369EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.9 views

RHCOS 4 : OpenShift Container Platform 4.17.22 (RHSA-2025:3061)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:3061 advisory. - go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 Note that Nessus has not tested for this issue but has instead...

8.7CVSS6.8AI score0.00369EPSS
Exploits0References5
OSV
OSV
added 2026/02/20 2:27 p.m.4 views

SUSE-SU-2026:0592-1 Security update for vexctl

This update for vexctl fixes the following issues: - Update to version 0.4.1+git78.f951e3a: - CVE-2025-22868: Unexpected memory consumption during token parsing in golang.org/x/oauth2. bsc1239186 - CVE-2024-45337: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in...

9.1CVSS8.6AI score0.03092EPSS
Exploits5References19
Tenable Nessus
Tenable Nessus
added 2026/02/12 12:0 a.m.4 views

SUSE SLES15: apptainer / apptainer-leap / apptainer-sle15_6 / apptainer-sle15_7 / etc (SUSE-SU-2026:0439-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0439-1 advisory. Security fixes: - CVE-2024-45310: Fixed runc being tricked into creating empty files/directories on host bsc1257432 -...

8.7CVSS6.8AI score0.00868EPSS
Exploits3References30
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : buildah-1.39.4-1.el9_6 (AXSA:2025-10448:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10448:02 advisory. go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 Tenable has extracted the preceding description block directly from the MiracleLin...

8.7CVSS7.5AI score0.00369EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 9 : osbuild-composer-132.2-3.el9_6.ML.1 (AXSA:2025-11084:08)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11084:08 advisory. go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 Tenable has extracted the preceding description block directly from the MiracleLin...

8.7CVSS6.8AI score0.00369EPSS
Exploits0References2
OSV
OSV
added 2025/12/02 10:46 p.m.7 views

CLSA-2025-1764152728 osbuild-composer: Fix of CVE-2025-27144

CVE-2025-27144: fix memory exhaustion vulnerability when parsing compact JWS or JWE input by updating the code to split JWT tokens...

8.7CVSS5.9AI score0.00369EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/11/04 4:48 a.m.4 views

Moderate: Red Hat Security Advisory: osbuild-composer security update

An update for osbuild-composer is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

8.7CVSS6.7AI score0.00369EPSS
Exploits0References3
OSV
OSV
added 2025/11/04 12:0 a.m.5 views

ALSA-2025:19566 Moderate: osbuild-composer security update

A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients. Security Fixes: go-jose: G...

8.7CVSS6.7AI score0.00369EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/04 12:0 a.m.2 views

RHEL 10 : osbuild-composer (RHSA-2025:19566)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:19566 advisory. A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for...

8.7CVSS6.8AI score0.00369EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/04 12:0 a.m.4 views

RHEL 9 : osbuild-composer (RHSA-2025:19594)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:19594 advisory. A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for...

8.7CVSS6.8AI score0.00369EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.1 views

Fedora: Security Advisory (FEDORA-2025-3d0ada20e1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS6.8AI score0.00868EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.5 views

RockyLinux 10 : skopeo (RLSA-2025:7467)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7467 advisory. go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 Tenable has extracted the preceding description block directly from the RockyLinux...

8.7CVSS6.8AI score0.00369EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/06 12:0 a.m.4 views

RockyLinux 10 : buildah (RLSA-2025:7459)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7459 advisory. go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 Tenable has extracted the preceding description block directly from the RockyLinux...

8.7CVSS6.8AI score0.00369EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/04 12:0 a.m.9 views

RockyLinux 10 : opentelemetry-collector (RLSA-2025:7479)

The remote RockyLinux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the RLSA-2025:7479 advisory. go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in...

8.7CVSS6.7AI score0.00804EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/10/04 12:0 a.m.6 views

RockyLinux 9 : buildah (RLSA-2025:7389)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7389 advisory. go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 Tenable has extracted the preceding description block directly from the RockyLinux...

8.7CVSS6.8AI score0.00369EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/04 12:0 a.m.5 views

RockyLinux 9 : skopeo (RLSA-2025:7397)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7397 advisory. go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 Tenable has extracted the preceding description block directly from the RockyLinux...

8.7CVSS6.8AI score0.00369EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2025/10/03 7:56 p.m.7 views

podman security update

An update is available for podman. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The podman tool manages pods, container images, and containers. It is part of...

8.7CVSS7AI score0.00868EPSS
Exploits0
OSV
OSV
added 2025/10/03 7:56 p.m.3 views

RLSA-2025:7479 Important: opentelemetry-collector security update

Collector with the supported components for a Rocky Enterprise Software Foundation build of OpenTelemetry Security Fixes: go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jw...

7.5CVSS6.6AI score0.00804EPSS
Exploits0References5
OSV
OSV
added 2025/09/05 12:43 p.m.6 views

OESA-2025-2176 buildah security update

The package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a new image...

8.7CVSS7.1AI score0.00369EPSS
Exploits0References2
Rows per page
Query Builder