Lucene search
+L

21 matches found

nvd
nvd
added 2026/06/30 10:16 p.m.8 views

CVE-2026-58449

txtai through 9.10.0, fixed in commit 11b32da, exposes an API /reindex endpoint whose function body parameter is resolved through txtai.util.Resolver, which performs import and getattr on the caller-supplied dotted path with no allowlist. When the API is exposed with no TOKEN configured...

9.8CVSS0.00725EPSS
Exploits0References4
nvd
nvd
added 2026/06/25 10:17 p.m.9 views

CVE-2026-6092

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

5.3CVSS0.00209EPSS
Exploits0References2
osv
osv
added 2026/05/29 10:17 p.m.6 views

GHSA-W7PM-9G55-MXFM stigmem-node's unsigned plugin override could be enabled without a second explicit acknowledgment

Impact A single configuration flag could disable plugin signature enforcement. If an operator unintentionally carried that setting into an environment where plugin paths are writable by less-trusted users, unsigned plugin code could be loaded. Patches Patched in 0.9.0a2. Disabling plugin signatur...

7.3CVSS5.9AI score
Exploits0References5
astralinux
astralinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fixed a mismatch in the count of ECMP siblings when clearing RTFADDRCONF. The syzbot reported a kernel bug in fib6addrt2node, when adding an IPv6 route. 0 The commit f72514b3c569 "ipv6: Clear RA flags when adding a static...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References1
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mm/uffd: A warning is now prevented when PTE MARKERUFFDWP is not compiled in. When PTE MARKERUFFDWP is not configured, it’s still possible to access the pte marker code and trigger a warning. Add some CONFIGPTE MARKERUFFDWP ifdef...

5.5CVSS5.3AI score0.0015EPSS
Exploits0References2
nvd
nvd
added 2026/04/28 7:36 p.m.14 views

CVE-2026-24231

NVIDIA NemoClaw contains a vulnerability in the validateEndpointUrl SSRF protection component, where an attacker could cause a server-side request forgery by supplying a crafted endpoint URL referencing the 0.0.0.0/8 address range through a blueprint configuration file or CLI flag. A successful...

6.3CVSS0.00129EPSS
Exploits0References3
github
github
added 2026/04/24 8:12 p.m.11 views

Traefik Kubernetes CRD allows unauthorized cross-namespace middleware binding

Summary There is a vulnerability in Traefik's Kubernetes CRD provider cross-namespace isolation enforcement. When providers.kubernetesCRD.allowCrossNamespace=false, Traefik correctly rejects direct cross-namespace middleware references from IngressRoute objects, but fails to apply the same...

6.4CVSS5.9AI score0.00254EPSS
Exploits1References7Affected Software3
cvelist
cvelist
added 2026/02/14 4:27 p.m.28 views

CVE-2026-23200 ipv6: Fix ECMP sibling count mismatch when clearing RTF_ADDRCONF

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix ECMP sibling count mismatch when clearing RTFADDRCONF syzbot reported a kernel BUG in fib6addrt2node when adding an IPv6 route. 0 Commit f72514b3c569 "ipv6: clear RA flags when adding a static route" introduced logic to...

0.00114EPSS
Exploits0References4
euvd
euvd
added 2026/02/14 4:27 p.m.6 views

EUVD-2026-5845

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix ECMP sibling count mismatch when clearing RTFADDRCONF syzbot reported a kernel BUG in fib6addrt2node when adding an IPv6 route. 0 Commit f72514b3c569 "ipv6: clear RA flags when adding a static route" introduced logic to...

5.3AI score0.00114EPSS
Exploits0References4
debiancve
debiancve
added 2026/02/14 4:27 p.m.4 views

CVE-2026-23200

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix ECMP sibling count mismatch when clearing RTFADDRCONF syzbot reported a kernel BUG in fib6addrt2node when adding an IPv6 route. 0 Commit f72514b3c569 "ipv6: clear RA flags when adding a static route" introduced logic to...

5.5CVSS5.3AI score0.00114EPSS
Exploits0
osv
osv
added 2026/02/14 4:27 p.m.6 views

CVE-2026-23200 ipv6: Fix ECMP sibling count mismatch when clearing RTF_ADDRCONF

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix ECMP sibling count mismatch when clearing RTFADDRCONF syzbot reported a kernel BUG in fib6addrt2node when adding an IPv6 route. 0 Commit f72514b3c569 "ipv6: clear RA flags when adding a static route" introduced logic to...

5.5CVSS5.3AI score0.00114EPSS
Exploits0References7
cnnvd
cnnvd
added 2026/02/14 12:0 a.m.6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an inconsistency in the ECMP brother counts when clearing the RTFADDRCONF flag using IPv6,...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
github
github
added 2025/11/14 8:33 p.m.46 views

PrivateBin's template-switching feature allows arbitrary local file inclusion through path traversal

Summary An unauthenticated Local File Inclusion exists in the template-switching feature: if templateselection is enabled in the configuration, the server trusts the template cookie and includes the referenced PHP file. An attacker can read sensitive data or, if they manage to drop a PHP file...

5.8CVSS8.2AI score0.00482EPSS
Exploits0References4Affected Software1
cve
cve
added 2025/10/01 11:45 a.m.23 views

CVE-2022-50448

CVE-2022-50448 involves the Linux kernel mm/uffd path where PTE_MARKER_UFFD_WP was not guarded, allowing a reachable warning when PTE_MARKER_UFFD_WP was not configured. The fix adds CONFIG_PTE_MARKER_UFFD_WP specific ifdefs to ensure the code is not executed in builds without the option. Impact d...

5.5CVSS6.3AI score0.0015EPSS
Exploits0References3Affected Software1
pypa
pypa
added 2024/07/16 11:15 p.m.7 views

PYSEC-2024-66

dbt enables data analysts and engineers to transform their data using the same practices that software engineers use to build applications. When a user installs a package in dbt, it has the ability to override macros, materializations, and other core components of dbt. This is by design, as it...

7.8CVSS6.8AI score0.00372EPSS
Exploits1References11Affected Software1
redhat
redhat
added 2024/02/06 1:14 p.m.5 views

zookeeper: Authorization Bypass in Apache ZooKeeper

A flaw was found in Apache ZooKeeper. Authorization bypass through user-controlled key is available iff SASL Quorum Peer authentication is enabled in ZooKeeper via quorum.auth.enableSasl=true configuration. A malicious user could bypass the authentication controller by using a non-existing instan...

9.1CVSS7.1AI score0.01713EPSS
Exploits0References5
nessus
nessus
added 2023/04/20 12:0 a.m.45 views

RHEL 8 : kernel (RHSA-2023:1841)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1841 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/ulp: use-after-free in listening UL...

7.8CVSS6.5AI score0.00652EPSS
Exploits0References4
nessus
nessus
added 2023/03/07 12:0 a.m.42 views

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-5925-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5925-1 advisory. It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain...

8.8CVSS7.3AI score0.01067EPSS
Exploits2References9
ubuntucve
ubuntucve
added 2023/02/22 12:0 a.m.140 views

CVE-2023-0461

There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. To reach the vulnerability kernel configuration flag CONFIGTLS or CONFIGXFRMESPINTCP has to be configured, but the operation does not require any privilege. There is a...

7.8CVSS6.8AI score0.00652EPSS
Exploits0References27
exploitpack
exploitpack
added 2018/08/03 12:0 a.m.14 views

cgit 1.2.1 - cgit_clone_objects() Directory Traversal

cgit 1.2.1 - cgitcloneobjects Directory Traversal There is a directory traversal vulnerability in cgitcloneobjects, reachable when the configuration flag enable-http-clone is set to 1 default: void cgitcloneobjectsvoid if !ctx.qry.path cgitprinterrorpage400, "Bad request", "Bad request"; return; ...

0.4AI score
Exploits0
Rows per page
Query Builder