CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

122 matches found

CVE-2025-5088 Arista CloudVision Exchange (CVX) Cluster Privilege Escalation via MCS Redis Session

An authenticated Redis session could be used to obtain full root access to all servers in the CVX cluster. Note that this would require an attacker to have both network access to the Redis service on a CVX server and the Redis password. Please note that all Redis communication, including...

8.7CVSS5.5AI score0.00031EPSS

Exploits0References1

RedHat Linux•added 2026/05/26 2:29 p.m.•15 views

Important: Red Hat Security Advisory: RHACS 4.9.7 security and bug fix update

Updated images are now available for Red Hat Advanced Cluster Security RHACS, which typically include new features, bug fixes, and/or security patches. See the release notes link in the references section for a description of the fixes and enhancements in this particular release...

10CVSS6.7AI score0.00188EPSS

Exploits12References12

RedHat Linux•added 2026/05/26 11:34 a.m.•9 views

Important: Red Hat Security Advisory: RHACS 4.10.3 security and bug fix update

10CVSS6.6AI score0.00188EPSS

Exploits7References10

RedHat Linux•added 2026/05/05 4:27 p.m.•4 views

Important: Red Hat Security Advisory: RHACS 4.10.2 security and bug fix update

9.8CVSS6.8AI score0.0008EPSS

Exploits2References10

RedHat Linux•added 2026/04/27 11:24 p.m.•14 views

Important: Red Hat Security Advisory: RHACS 4.8.11 security and bug fix update

9.8CVSS6.7AI score0.0008EPSS

Exploits2References10

RedHat Linux•added 2026/04/27 8:25 p.m.•7 views

Important: Red Hat Security Advisory: RHACS 4.8.11 security and bug fix update

9.8CVSS5.2AI score0.0008EPSS

Exploits2References9

RedHat Linux•added 2026/04/08 5:43 p.m.•4 views

Important: Red Hat Security Advisory: RHACS 4.9.5 security and bug fix update

9.6CVSS7.2AI score0.00084EPSS

Exploits9References13

Snyk•added 2026/03/16 8:45 p.m.•4 views

Improper Restriction of Communication Channel to Intended Endpoints

Overview Affected versions of this package are vulnerable to Improper Restriction of Communication Channel to Intended Endpoints due to a misconfigured NetworkPolicy inter-ns. An attacker can gain unauthorized access to resources in other namespaces by exploiting an overly permissive network...

10CVSS5.9AI score0.00023EPSS

Exploits0References2

OSV•added 2026/02/23 12:0 a.m.•3 views

ALSA-2026:3032 Important: munge security update

MUNGE MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having...

7.8CVSS6AI score0.00029EPSS

Exploits0References4

OSV•added 2026/02/12 10:6 p.m.•3 views

GHSA-965M-V4CC-6334 Unauthenticated Admission Webhook Endpoints in Yoke ATC

Unauthenticated Admission Webhook Endpoints in Yoke ATC This vulnerability exists in the Air Traffic Controller ATC component of Yoke, a Kubernetes deployment tool. The ATC webhook endpoints lack proper authentication mechanisms, allowing any pod within the cluster network to directly send...

7.5CVSS6.4AI score0.00118EPSS

Exploits1References4

RedHat Linux•added 2026/02/11 3:9 p.m.•9 views

Important: Red Hat Security Advisory: RHACS 4.9.3 security and bug fix update

9.2CVSS7AI score0.00071EPSS

Exploits5References11

RedHat Linux•added 2026/02/09 3:50 p.m.•5 views

Important: Red Hat Security Advisory: RHACS 4.9.3 security and bug fix update

9.2CVSS7AI score0.00071EPSS

Exploits5References11

RedHat Linux•added 2026/01/28 10:40 p.m.•7 views

Important: Red Hat Security Advisory: RHACS 4.8.8 security and bug fix update