Lucene search
K

4 matches found

Oracle linux
Oracle linux
added 2026/06/09 12:0 a.m.12 views

freerdp security update

2.1.1-5.0.7 - Fixed CVE-2026-22852 CVE-2026-22854 CVE-2026-22856 CVE-2026-23732 CVE-2026-23948 CVE-2026-24491 CVE-2026-24675 CVE-2026-24676 CVE-2026-24679 CVE-2026-24684 CVE-2026-31806 Orabug: 39272429 2.1.1-5.0.5 - Fixed CVE-2026-26955 CVE-2026-26956 Orabug: 39189643 2:2.2.0-5.0.3 - Fixed...

9.8CVSS6.5AI score0.00656EPSS
Exploits5
vulnersOsv
vulnersOsv
added 2026/05/04 6:27 p.m.7 views

@aiconnect/codelets-runner (>=0.1.0 <=0.2.0), @cairncms/api (>=1.0.0-beta.1 <=1.0.0-beta.4) +15 more potentially affected by CVE-2026-26956 via vm2 (>=3.0.0 <=3.10.4)

vm2 NPM version =3.0.0, =0.1.0, =1.0.0-beta.1, =3.0.46, =1.0.0-beta.1, =0.1.64, =0.1.61, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.66.16, =1.68.29 and more Source cves: CVE-2026-26956 Source advisory: SNYK:JS-VM2-16419531...

9.8CVSS5.8AI score0.00921EPSS
Exploits1
NVD
NVD
added 2026/05/04 5:16 p.m.10 views

CVE-2026-26956

vm2 is an open source vm/sandbox for Node.js. In version 3.10.4, vm2 is vulnerable to full sandbox escape with arbitrary code execution. Attacker code inside VM.run obtains host process object and runs host commands with zero host cooperation. This issue has been patched in version 3.10.5...

9.8CVSS0.00921EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/05/04 4:37 p.m.3 views

CVE-2026-26956

vm2 is an open source vm/sandbox for Node.js. In version 3.10.4, vm2 is vulnerable to full sandbox escape with arbitrary code execution. Attacker code inside VM.run obtains host process object and runs host commands with zero host cooperation. This issue has been patched in version 3.10.5...

9.8CVSS6AI score0.00921EPSS
Exploits1References3
Rows per page
Query Builder