CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/03/18 12:0 a.m.•4 views

IncusOS 安全漏洞

IncusOS is an immutable operating system image developed for container management platforms, based on the LXC open source framework. Previous versions of IncusOS 202603142010 contained security vulnerabilities. These vulnerabilities stemmed from a default configuration that allowed physical acces...

7.6CVSS6.4AI score0.0014EPSS

Exploits0References5

OSV•added 2026/03/15 5:56 a.m.•5 views

OESA-2026-1599 kata-containers-go security update

This is core component of Kata Container, to make it work, you need a isulad/docker engine. Security Fixes: Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. In versions prior to 3.26.0, when a contain...

10CVSS5.7AI score0.00438EPSS

Vulnrichment•added 2026/03/13 3:8 a.m.•3 views

CVE-2025-57849 Fuse: privilege escalation via excessive /etc/passwd permissions

A container privilege escalation flaw was found in certain Fuse images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, ca...

6.4CVSS6AI score0.00208EPSS

Cvelist•added 2026/03/13 3:8 a.m.•24 views

CVE-2025-57849 Fuse: privilege escalation via excessive /etc/passwd permissions

6.4CVSS0.00208EPSS

RedhatCVE•added 2026/03/11 7:8 a.m.•3 views

CVE-2025-36105

IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could allow a local privileged user to obtain sensitive information from environment variables...

EUVD•added 2026/03/10 6:31 p.m.•5 views

Exploits0References1

EUVD-2025-208460

IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could allow a local privileged user to obtain sensitive information from environment variables...

EUVD•added 2026/03/10 6:31 p.m.•3 views

EUVD-2025-208459

IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could allow a local privileged user to obtain sensitive information from environment variables...

OSV•added 2026/03/10 6:28 p.m.•10 views

GO-2026-4590 Rancher's restricted PodSecurityPolicy does not prevent containers from running as a privileged user in github.com/rancher/rancher

Rancher's restricted PodSecurityPolicy does not prevent containers from running as a privileged user in github.com/rancher/rancher. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing...

5.8AI score

Exploits0References1

CVE•added 2026/03/10 12:50 a.m.•10 views

CVE-2025-36105

Affected product: IBM Planning Analytics Advanced Certified Containers (versions 3.1.0–3.1.4). Description: local privileged user can obtain sensitive information from environment variables due to cleartext storage in env vars (CWE-526). Impact: information disclosure at a local level. Mitigation...

Exploits0References1Affected Software1

Cvelist•added 2026/03/10 12:50 a.m.•27 views

CVE-2025-36105 IBM Planning Analytics Advanced Certified Containers is vulnerable to a sensitive information disclosure vulnerability

IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could allow a local privileged user to obtain sensitive information from environment variables...

4.4CVSS0.00082EPSS

Exploits0References1

ATTACKERKB•added 2026/03/10 12:50 a.m.•2 views

CVE-2025-36105

IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could allow a local privileged user to obtain sensitive information from environment variables...

Exploits0References2Affected Software1

OpenVAS•added 2026/03/10 12:0 a.m.•3 views

Huawei EulerOS: Security Advisory for kata-containers (EulerOS-SA-2026-1279)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.8AI score0.00563EPSS

OpenVAS•added 2026/03/10 12:0 a.m.•2 views

Huawei EulerOS: Security Advisory for kata-containers (EulerOS-SA-2026-1243)

7.5CVSS5.8AI score0.00563EPSS

CNNVD•added 2026/03/10 12:0 a.m.•8 views

IBM Planning Analytics Advanced Certified Containers 安全漏洞

IBM Planning Analytics Advanced Certified Containers is a containerized enterprise planning and analysis software deployment component provided by the American multinational company IBM. Versions 3.1.0 to 3.1.4 of IBM Planning Analytics Advanced Certified Containers contain security...

Tenable Nessus•added 2026/03/10 12:0 a.m.•2 views

EulerOS 2.0 SP13 : kata-containers (EulerOS-SA-2026-1279)

According to the versions of the kata-containers package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64...

7.5CVSS5.9AI score0.00563EPSS

Tenable Nessus•added 2026/03/10 12:0 a.m.•3 views

EulerOS 2.0 SP13 : kata-containers (EulerOS-SA-2026-1243)

7.5CVSS5.9AI score0.00563EPSS