Lucene search
+L

149 matches found

Amazon
Amazon
added 2025/10/14 12:0 a.m.4 views

Medium: amazon-ecr-credential-helper

Issue Overview: Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon. CVE-2025-22874 Proxy-Authorization and Proxy-Authenticate headers...

7.5CVSS6.8AI score0.0056EPSS
Exploits0
Amazon
Amazon
added 2025/10/14 12:0 a.m.7 views

Medium: amazon-ecr-credential-helper

Issue Overview: Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information. CVE-2025-4673 Affected Packages: amazon-ecr-credential-helper Note: This advisory is applicable to Amazon Linux 2 - Ecs Extra. Visit this page to learn...

6.8CVSS7AI score0.0056EPSS
Exploits0
Amazon
Amazon
added 2025/10/14 12:0 a.m.4 views

Medium: amazon-ecr-credential-helper

Issue Overview: Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information. CVE-2025-4673 Affected Packages: amazon-ecr-credential-helper Note: This advisory is applicable to Amazon Linux 2 - Nitro-enclaves Extra. Visit this pa...

6.8CVSS7AI score0.0056EPSS
Exploits0
Amazon
Amazon
added 2025/10/14 12:0 a.m.5 views

Medium: amazon-ecr-credential-helper

Issue Overview: Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information. CVE-2025-4673 Affected Packages: amazon-ecr-credential-helper Note: This advisory is applicable to Amazon Linux 2 - Docker Extra. Visit this page to...

6.8CVSS7AI score0.0056EPSS
Exploits0
OSV
OSV
added 2025/10/04 12:11 a.m.7 views

RLSA-2025:11462 Important: git security update

Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to wo...

8.3CVSS7.9AI score0.02775EPSS
Exploits9References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2000

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.01536EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-20679

Malicious code in bioql PyPI...

6.3CVSS9.2AI score0.00324EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-46253

Malicious code in bioql PyPI...

2.1CVSS7.5AI score0.01037EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-41092

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Docker CLI is the command line interface for the docker container runtime. A bug was found in the Docker CLI where running docker login...

7.5CVSS6.1AI score0.01536EPSS
Exploits0References2
Wolfi
Wolfi
added 2025/08/16 1:47 p.m.13 views

CVE-2025-54410 vulnerabilities

Vulnerabilities for packages: bento, helm-mapkubeapis, crossplane, skaffold, ctop, newrelic-infrastructure-agent, promxy, cluster-api-helm-controller, rancher, undock, portieris, docker-credential-gcr, harbor-scanner-trivy, amazon-cloudwatch-agent-operator, xeol, gatekeeper, prometheus,...

5.2CVSS6.2AI score0.00152EPSS
Exploits0
OSV
OSV
added 2025/08/13 7:29 p.m.8 views

CLSA-2025-1755113387 Fix CVE(s): CVE-2025-48386

SECURITY UPDATE: security vulnerability patched - debian/patches/CVE-2025-48386.patch: fix buffer overflow in wcsncat to avoid segmentation fault caused by off-by-one error in the wincred credential helper - CVE-2025-48386...

6.3CVSS7.5AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2025/07/10 5:40 a.m.5 views

BIT-GIT-2025-48386 Git allows a buffer overflow in 'wincred' credential helper

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer target as a unique key for storing and comparing against internal storage. This...

6.3CVSS6.2AI score0.00324EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/07/09 11:22 p.m.3 views

SUSE CVE-2025-48386

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer target as a unique key for storing and comparing against internal storage. This...

5.5CVSS7.2AI score0.00324EPSS
Exploits0References5
OSV
OSV
added 2025/07/08 7:15 p.m.3 views

ALPINE-CVE-2025-48386

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer target as a unique key for storing and comparing against internal storage. This...

6.3CVSS7.1AI score0.00324EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/08 6:23 p.m.3 views

CVE-2025-48386 Git allows a buffer overflow in 'wincred' credential helper

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer target as a unique key for storing and comparing against internal storage. This...

6.3CVSS6.7AI score0.00324EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/08 6:23 p.m.16 views

CVE-2025-48386 Git allows a buffer overflow in 'wincred' credential helper

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer target as a unique key for storing and comparing against internal storage. This...

6.3CVSS0.00324EPSS
Exploits0References1
OSV
OSV
added 2025/07/08 6:23 p.m.4 views

CVE-2025-48386 Git allows a buffer overflow in 'wincred' credential helper

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer target as a unique key for storing and comparing against internal storage. This...

6.3CVSS9.1AI score0.00324EPSS
Exploits0References4
OSV
OSV
added 2025/07/08 5:0 p.m.4 views

UBUNTU-CVE-2025-48386

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer target as a unique key for storing and comparing against internal storage. This...

6.3CVSS6AI score0.00324EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/07/08 2:0 p.m.10 views

GitHub: CVE-2025-48386 Git Credential Helper Vulnerability

CVE-2025-48386 is regarding a vulnerability in Git where the wincred credential helper uses a static buffer target as a unique key for storing and comparing against internal storage. This credential helper does not properly bounds check the available space remaining in the buffer before appending...

6.3CVSS6.3AI score0.00324EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/23 12:0 a.m.3 views

Amazon Linux 2023 : amazon-ecr-credential-helper (ALAS2023-2025-1039)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1039 advisory. The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size line terminated by a bare LF. When used in conjunction with a server or proxy which incorrectly...

9.1CVSS6.9AI score0.00778EPSS
Exploits0References4
Rows per page
Query Builder