Lucene search
K

22 matches found

OSV
OSV
added 2026/05/15 2:3 p.m.7 views

OESA-2026-2358 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.CVE-2026-40226...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
OSV
OSV
added 2026/05/09 12:33 p.m.6 views

OESA-2026-2279 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.CVE-2026-40226...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/04/11 11:26 p.m.15 views

SUSE CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/10 6:31 p.m.9 views

EUVD-2026-21400

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/04/10 4:16 p.m.9 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/10 3:18 p.m.33 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS0.00072EPSS
Exploits0References1
CVE
CVE
added 2026/04/10 3:18 p.m.26 views

CVE-2026-40226

The CVE affects systemd-nspawn: versions 233–259 (before 260) are vulnerable. A crafted optional config file can trigger an escape-to-host action. Root cause is not detailed beyond this vector in the provided docs. Remediation implied by the reference is upgrading to systemd 260 or later to mitig...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/10 3:18 p.m.8 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 6:30 p.m.4 views

EUVD-2025-34448

An issue in the Configure New Cluster interface of kafka-ui v0.6.0 to v0.7.2 allows attackers to cause a Denial of Service DoS via uploading a crafted configuration file...

7.5CVSS6.3AI score0.00594EPSS
Exploits0References4
OSV
OSV
added 2025/07/24 4:56 p.m.8 views

CLSA-2025-1753376162 graphviz: Fix of CVE-2023-46045

CVE-2023-46045: fix out-of-bounds read via crafted config6a file...

7.8CVSS7.1AI score0.00712EPSS
Exploits1References1
Amazon
Amazon
added 2024/02/19 12:0 a.m.5 views

Medium: graphviz

Issue Overview: buffer overflow via a crafted config6a file NOTE: Crosses no security boundary, config files are under local control NOTE: https://gitlab.com/graphviz/graphviz/-/issues/2441 NOTE: Introduced by: https://gitlab.com/graphviz/graphviz/-/commit/cf95714837f06f684929b54659523c2c9b1fc19f...

7.8CVSS6.8AI score0.00712EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2024/02/10 8:0 a.m.3 views

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.

...

7.8CVSS7.2AI score0.00712EPSS
Exploits1
OSV
OSV
added 2024/02/02 6:15 a.m.5 views

AZL-34237 CVE-2023-46045 affecting package graphviz for versions less than 2.42.4-10

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root...

7.8CVSS7.1AI score0.00712EPSS
Exploits1References1
OSV
OSV
added 2024/02/02 6:15 a.m.8 views

AZL-34768 CVE-2023-46045 affecting package graphviz for versions less than 2.42.4-12

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root...

7.8CVSS7AI score0.00712EPSS
Exploits1References1
OSV
OSV
added 2024/02/02 6:15 a.m.1 views

DEBIAN-CVE-2023-46045

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root...

7.8CVSS7.2AI score0.00712EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2024/02/02 12:0 a.m.20 views

CVE-2023-46045

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root...

7.8CVSS7.4AI score0.00712EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/01/11 12:0 a.m.6 views

PT-2024-1448 · Unknown · Rapid Scada

Name of the Vulnerable Software and Affected Versions: Rapid SCADA versions prior to Version 5.8.4 Description: The issue is related to a Zip Slip vulnerability in the unpacking routine, allowing an attacker to supply a malicious configuration file and achieve remote code execution. This can be...

9CVSS8.9AI score0.01233EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2022/03/31 8:15 a.m.6 views

CVE-2022-22986

Netcommunity OG410X and OG810X series Netcommunity OG410Xa, OG410Xi, OG810Xa, and OG810Xi firmware Ver.2.28 and earlier allow an attacker on the adjacent network to execute an arbitrary OS command via a specially crafted config file...

8.8CVSS7.5AI score0.00709EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/03/31 8:15 a.m.3 views

CVE-2022-22986

Netcommunity OG410X and OG810X series Netcommunity OG410Xa, OG410Xi, OG810Xa, and OG810Xi firmware Ver.2.28 and earlier allow an attacker on the adjacent network to execute an arbitrary OS command via a specially crafted config file...

8.8CVSS6AI score0.00709EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/03/31 12:0 a.m.9 views

PT-2022-15756

Name of the Vulnerable Software and Affected Versions Netcommunity OG410X and OG810X series versions 2.28 and earlier Description The issue allows an attacker on the adjacent network to execute an arbitrary OS command via a specially crafted config file. Recommendations For Netcommunity OG410X an...

8.8CVSS7.5AI score0.00709EPSS
Exploits0References8
Rows per page
Query Builder