CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

CNVD•added 2026/02/10 12:0 a.m.•1 views

OpenClaw OS Command Injection Vulnerability (CNVD-2026-13291)

OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw there is an operating system command injection vulnerability , the vulnerability stems from the Docker sandbox execution mechanism when constructing shell commands on the PATH environment variable handling insecurity ,...

8.8CVSS6AI score0.04773EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-2599

Malware in sbrugna...

8.1CVSS7.8AI score0.02014EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-1897

Malware in sbrugna...

8.8CVSS8.6AI score0.02109EPSS

Exploits0References5

Tenable Nessus•added 2025/08/07 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2020-25039

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sylabs Singularity 3.2.0 through 3.6.2 has Insecure Permissions on temporary directories used in fakeroot or user namespace container execution. CVE-2020-25039...

8.1CVSS7.2AI score0.02014EPSS

Exploits0References2

BDU FSTEC•added 2024/07/05 12:0 a.m.•3 views

The vulnerability of the software for managing modules and services within Kubernetes Submariner Operators, related to errors in privilege management, allows a perpetrator to execute any container on a node.

The vulnerability of the software for installing, configuring, and managing Submariner in the Kubernetes Submariner Operator is related to errors in privilege management. Exploiting this vulnerability could allow a malicious actor to execute arbitrary containers on nodes remotely...

6.6CVSS6.9AI score0.00504EPSS

Exploits0References4Affected Software3

OSV•added 2024/03/08 11:7 a.m.•4 views

OESA-2024-1251 cri-o security update

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface. Security Fixes: Incorrect handling of the supplementary groups in the CRI-O container engine might lead to sensitive information disclosure or possible data modification if an attacker has direct access to t...

7.1CVSS6.7AI score0.0036EPSS

Exploits1References2

CVE•added 2024/01/31 10:3 p.m.•419 views

CVE-2024-23653

CVE-2024-23653 involves BuildKit allowing a container with elevated privileges via interactive APIs unless entitlement checks are enforced. Description notes that privileged containers are normally gated by security.insecure entitlement and user authorization, and that the issue has been fixed in...

9.8CVSS9.3AI score0.02983EPSS

Exploits0References3Affected Software1

Fedora•added 2023/03/16 6:20 p.m.•43 views

[SECURITY] Fedora 36 Update: containerd-1.6.19-1.fc36

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.8CVSS7.1AI score0.00542EPSS

Exploits1

Fedora•added 2022/12/29 1:16 a.m.•45 views

[SECURITY] Fedora 36 Update: containerd-1.6.14-2.fc36

7.5CVSS6.6AI score0.08519EPSS

Exploits0

Fedora•added 2022/12/26 1:6 a.m.•41 views

[SECURITY] Fedora 37 Update: containerd-1.6.14-2.fc37

7.5CVSS7AI score0.08519EPSS

Exploits0

Vulnrichment•added 2022/10/19 9:24 p.m.•6 views

CVE-2022-41835 F5OS vulnerability CVE-2022-41835

In F5OS-A version 1.x before 1.1.0 and F5OS-C version 1.x before 1.5.0, excessive file permissions in F5OS allows an authenticated local attacker to execute limited set of commands in a container and impact the F5OS controller...

7.3CVSS8.7AI score0.00147EPSS

Exploits0References1

Fedora•added 2022/09/16 12:18 a.m.•39 views

[SECURITY] Fedora 37 Update: containerd-1.6.8-2.fc37

6.3CVSS6.8AI score0.00807EPSS

Exploits0

Fedora•added 2022/07/30 1:55 a.m.•18 views

[SECURITY] Fedora 36 Update: containerd-1.6.6-5.fc36

7.5AI score

Exploits0

Fedora•added 2022/07/04 1:35 a.m.•36 views

[SECURITY] Fedora 36 Update: containerd-1.6.6-4.fc36

9.3CVSS8.9AI score0.05994EPSS

Exploits4

Fedora•added 2022/06/16 1:21 a.m.•37 views

[SECURITY] Fedora 36 Update: containerd-1.6.6-1.fc36

5.5CVSS6.2AI score0.00377EPSS

Exploits0

Github Security Blog•added 2022/06/06 9:50 p.m.•40 views

Node DOS by way of memory exhaustion through ExecSync request in CRI-O

Description An ExecSync request runs a command in a container and returns the output to the Kubelet. It is used for readiness and liveness probes within a pod. The way CRI-O runs ExecSync commands is through conmon. CRI-O asks conmon to start the process, and conmon writes the output to disk. CRI...

7.8CVSS0.02785EPSS

Exploits1References5Affected Software1

Fedora•added 2022/05/07 5:6 a.m.•37 views

[SECURITY] Fedora 36 Update: containerd-1.6.2-2.fc36

7.5CVSS10AI score0.03931EPSS

Exploits0

Fedora•added 2022/05/07 4:49 a.m.•42 views

[SECURITY] Fedora 36 Update: containerd-1.6.2-1.fc36

5.9CVSS6.4AI score0.00492EPSS

Exploits0

Fedora•added 2022/04/28 5:55 a.m.•32 views

[SECURITY] Fedora 34 Update: containerd-1.6.2-3.fc34