2670 matches found
Important: Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images
Updated RHEL-8 based Middleware Containers container images are now available The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2025:10698 see References Users of RHEL-8 based Middleware Containers container images are advis...
The vulnerability of Eclipse Jetty servlet containers relates to improper cleaning or release of resources, allowing attackers to circumvent established security restrictions.
The vulnerability of Eclipse Jetty servlet containers is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to bypass established security restrictions remotely...
CVE-2025-53372
node-code-sandbox-mcp is a Node.js–based Model Context Protocol server that spins up disposable Docker containers to execute arbitrary JavaScript. Prior to 1.3.0, a command injection vulnerability exists in the node-code-sandbox-mcp MCP Server. The vulnerability is caused by the unsanitized use o...
CVE-2025-53372
node-code-sandbox-mcp is a Node.js–based Model Context Protocol server that spins up disposable Docker containers to execute arbitrary JavaScript. Prior to 1.3.0, a command injection vulnerability exists in the node-code-sandbox-mcp MCP Server. The vulnerability is caused by the unsanitized use o...
CVE-2025-53372 node-code-sandbox-mcp has a Sandbox Escape via Command Injection
node-code-sandbox-mcp is a Node.js–based Model Context Protocol server that spins up disposable Docker containers to execute arbitrary JavaScript. Prior to 1.3.0, a command injection vulnerability exists in the node-code-sandbox-mcp MCP Server. The vulnerability is caused by the unsanitized use o...
Microsoft Service Fabric 后置链接漏洞
Microsoft Service Fabric is a set of distributed systems platform from Microsoft USA. The platform is primarily used for packaging, deploying, and managing microservices and containers. Microsoft Service Fabric suffers from a backlink vulnerability. An attacker can exploit the vulnerability to...
FreeBSD : firefox -- multiple vulnerabilities (a55d2120-58cf-11f0-b4ad-b42e991fc52e)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the a55d2120-58cf-11f0-b4ad-b42e991fc52e advisory. [email protected] reports: An attacker was able to bypass the connect-src directive of a...
AZL-65577 CVE-2025-53605 affecting package kata-containers-cc 3.2.0.azl2-8
The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::codedinputstream::CodedInputStream::skipgroup parsing of unknown fields in untrusted input...
AZL-65556 CVE-2025-53605 affecting package kata-containers for versions less than 3.19.1.kata2-1
The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::codedinputstream::CodedInputStream::skipgroup parsing of unknown fields in untrusted input...
AZL-65574 CVE-2025-53605 affecting package kata-containers 3.2.0.azl2-7
The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::codedinputstream::CodedInputStream::skipgroup parsing of unknown fields in untrusted input...
Mozilla Firefox Security Bypass Vulnerability (CNVD-2025-15497)
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security bypass vulnerability exists in Mozilla Firefox, which stems from a flaw in Multi-Account Containers, and can be exploited by attackers to bypass security restrictions...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...
firefox: thunderbird: The WebCompat WebExtension shipped with Firefox exposed a persistent UUID
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: An attacker who enumerated resources from the WebCompat extension could have obtained a persistent UUID that identified the browser and persisted between containers and...