Lucene search
K

13808 matches found

NVD
NVD
added 2026/06/25 7:16 p.m.8 views

CVE-2026-54092

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, unchecked passwords maximums allow for an arbitrarily large password to be passed into the login API. This spikes CPU and memory, and after...

6.5CVSS0.00484EPSS
Exploits0References4
OSV
OSV
added 2026/06/25 6:43 p.m.4 views

GO-2026-5338 containerd: CRI checkpoint import allows local image tag poisoning in github.com/containerd/containerd

containerd: CRI checkpoint import allows local image tag poisoning in github.com/containerd/containerd...

9.9CVSS5.8AI score0.00354EPSS
Exploits0References1
NVD
NVD
added 2026/06/25 5:16 p.m.7 views

CVE-2026-55092

Trivy is a security scanner. Prior to 0.71.1, when Trivy downloads an OCI artifact, it uses the org.opencontainers.image.title annotation from the artifact manifest as the destination filename without validation. An attacker who can make Trivy fetch an attacker-controlled artifact can supply a...

7.5CVSS0.00292EPSS
Exploits0References1
CVE
CVE
added 2026/06/25 4:26 p.m.16 views

CVE-2026-55092

Trivy before 0.71.1 vulnerable to path traversal when downloading OCI artifacts: the org.opencontainers.image.title annotation from the artifact manifest is used as the destination filename without validation, allowing writing layer content to arbitrary locations on the host filesystem. Impact is...

7.5CVSS6AI score0.00292EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2026/06/25 12:58 p.m.4 views

CVE-2026-40012

ECS zero scoped answers are stored in the packet cache while they should not. This impacts only configurations that have ECS enabled;...

5.3CVSS5.9AI score0.00305EPSS
Exploits0
EUVD
EUVD
added 2026/06/25 12:58 p.m.5 views

EUVD-2026-39356

ECS zero scoped answers are stored in the packet cache while they should not. This impacts only configurations that have ECS enabled;...

5.3CVSS5.9AI score0.00305EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/06/25 11:0 a.m.8 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.13.68 packages and security update

Red Hat OpenShift Container Platform release 4.13.68 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...

10CVSS6.9AI score0.01945EPSS
Exploits4References7
OSV
OSV
added 2026/06/25 10:41 a.m.6 views

RHSA-2026:26999 Red Hat Security Advisory: OpenShift Container Platform 4.19.35 packages and security update

Bulletin has no description...

9.1CVSS6.5AI score0.01557EPSS
Exploits1References8
OSV
OSV
added 2026/06/25 10:41 a.m.6 views

RHSA-2026:26527 Red Hat Security Advisory: OpenShift Container Platform 4.12.92 packages and security update

Bulletin has no description...

7.5CVSS6.8AI score0.01945EPSS
Exploits3References43
RedHat Linux
RedHat Linux
added 2026/06/25 10:0 a.m.11 views

Important: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/25 9:3 a.m.10 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.12.92 packages and security update

Red Hat OpenShift Container Platform release 4.12.92 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

10CVSS6.9AI score0.01945EPSS
Exploits3References6
RedHat Linux
RedHat Linux
added 2026/06/25 8:39 a.m.8 views

Critical: Red Hat Security Advisory: OpenShift Container Platform 4.12.92 bug fix and security update

Red Hat OpenShift Container Platform release 4.12.92 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

9.8CVSS6.1AI score0.00563EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/06/25 8:18 a.m.15 views

Important: Red Hat Security Advisory: Red Hat OpenShift API for Data Protection

A new version of OpenShift API for Data Protection OADP is now available. OpenShift API for Data Protection OADP enables you to back up and restore application resources, persistent volume data, and internal container images to external backup storage. OADP enables both file system-based and...

10CVSS6.7AI score0.01557EPSS
Exploits2References13
RedHat Linux
RedHat Linux
added 2026/06/25 6:58 a.m.7 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.12.92 bug fix and security update

Red Hat OpenShift Container Platform release 4.12.92 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

7.5CVSS5.9AI score0.00443EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/06/25 6:40 a.m.9 views

Important: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/25 6:32 a.m.5 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.13.68 bug fix and security update

Red Hat OpenShift Container Platform release 4.13.68 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...

8.8CVSS5.9AI score0.00443EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.11 views

PT-2026-52554

Name of the Vulnerable Software and Affected Versions Podman versions 1.8.1 through 5.8.4 Description A malicious container image can trick Podman into leaking host environment variables into the container. This occurs when an image contains an Env entry consisting of a key without a value...

7.5CVSS5.8AI score0.0026EPSS
Exploits0References7
AlmaLinux
AlmaLinux
added 2026/06/25 12:0 a.m.7 views

Important: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References10
NVD
NVD
added 2026/06/24 10:16 p.m.7 views

CVE-2026-55455

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the outbound HTTP host filter applied by WebClientUtils used by the REST API and GraphQL datasource plugins validates hosts against an exact-match string denylist. The comprehensive address-class check...

9.1CVSS0.0022EPSS
Exploits0References1
CVE
CVE
added 2026/06/24 9:36 p.m.16 views

CVE-2026-55455

CVE-2026-55455 affects Appsmith prior to version 2.1. The issue is an SSRF: the outbound HTTP host filter in WebClientUtils used by the REST API and GraphQL datasource plugins validates hosts against an exact-match denylist, while a broader address-class check (loopback, any-local, link-local, fc...

9.1CVSS6AI score0.0022EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder