58 matches found
GHSA-8G2R-HHVJ-MV99 vulnerabilities
Vulnerabilities for packages: skopeo-fips, amazon-ssm-agent-fips, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, tkn-fips, kubernetes-ingress-defaultbackend-fips, mongodb-kubernetes-operator-fips, descheduler-fips, crossplane-provider-aws-athena,...
CVE-2026-39817 vulnerabilities
Vulnerabilities for packages: skopeo-fips, cni-plugins, amazon-ssm-agent-fips, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, nri-nagios-fips, tkn-fips, kubernetes-ingress-defaultbackend-fips, mongodb-kubernetes-operator-fips, descheduler-fips,...
GHSA-QC64-M6C2-V4X7 vulnerabilities
Vulnerabilities for packages: skopeo-fips, cni-plugins, amazon-ssm-agent-fips, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, nri-nagios-fips, tkn-fips, kubernetes-ingress-defaultbackend-fips, mongodb-kubernetes-operator-fips, descheduler-fips,...
GHSA-5M4P-2GJX-P2G8 vulnerabilities
Vulnerabilities for packages: skopeo-fips, cni-plugins, amazon-ssm-agent-fips, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, nri-nagios-fips, tkn-fips, kubernetes-ingress-defaultbackend-fips, mongodb-kubernetes-operator-fips, descheduler-fips,...
CVE-2026-33811 vulnerabilities
Vulnerabilities for packages: skopeo-fips, rke2-cloud-provider-fips, commercial-grafana, crossplane-provider-aws-networkmanager, tkn-fips, descheduler-fips, crossplane-provider-aws-athena, kubernetes-csi-external-attacher-fips, sops-fips, crossplane-provider-azure-notificationhubs, git-lfs-fips,...
CVE-2026-39836 vulnerabilities
Vulnerabilities for packages: skopeo-fips, amazon-ssm-agent-fips, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, tkn-fips, kubernetes-ingress-defaultbackend-fips, mongodb-kubernetes-operator-fips, descheduler-fips, crossplane-provider-aws-athena,...
CVE-2026-39819 vulnerabilities
Vulnerabilities for packages: skopeo-fips, cni-plugins, amazon-ssm-agent-fips, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, nri-nagios-fips, tkn-fips, kubernetes-ingress-defaultbackend-fips, mongodb-kubernetes-operator-fips, descheduler-fips,...
CVE-2026-42501 vulnerabilities
Vulnerabilities for packages: skopeo-fips, cni-plugins, amazon-ssm-agent-fips, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, nri-nagios-fips, tkn-fips, kubernetes-ingress-defaultbackend-fips, mongodb-kubernetes-operator-fips, descheduler-fips,...
GHSA-497X-JCXF-M478 vulnerabilities
Vulnerabilities for packages: skopeo-fips, rke2-cloud-provider-fips, commercial-grafana, crossplane-provider-aws-networkmanager, tkn-fips, descheduler-fips, crossplane-provider-aws-athena, kubernetes-csi-external-attacher-fips, sops-fips, crossplane-provider-azure-notificationhubs, git-lfs-fips,...
GHSA-QF3Q-3H68-MMH2 vulnerabilities
Vulnerabilities for packages: skopeo-fips, cni-plugins, amazon-ssm-agent-fips, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, nri-nagios-fips, tkn-fips, kubernetes-ingress-defaultbackend-fips, mongodb-kubernetes-operator-fips, descheduler-fips,...
CVE-2026-33814 vulnerabilities
Vulnerabilities for packages: amazon-ssm-agent-fips, nodetaint, rke2-cloud-provider-fips, commercial-grafana, karma, crossplane-provider-aws-networkmanager, tkn-fips, mongodb-kubernetes-operator-fips, cert-manager-openshift-routes, azcopy, crossplane-provider-aws-lambda, descheduler-fips,...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: amazon-ssm-agent-fips, nodetaint, rke2-cloud-provider-fips, commercial-grafana, pulumi, tkn-fips, kubernetes-ingress-defaultbackend-fips, falcoctl, mongodb-kubernetes-operator-fips, cert-manager-openshift-routes, victoriametrics, rclone, git-lfs-fips,...
EUVD-2026-20858
A vulnerability was found in jeecgboot JimuReport up to 2.3.0. The affected element is the function DriverManager.getConnection of the file /drag/onlDragDataSource/testConnection of the component Data Source Handler. Performing a manipulation of the argument dbUrl results in code injection. The...
CVE-2026-5848 jeecgboot JimuReport Data Source testConnection DriverManager.getConnection code injection
A vulnerability was found in jeecgboot JimuReport up to 2.3.0. The affected element is the function DriverManager.getConnection of the file /drag/onlDragDataSource/testConnection of the component Data Source Handler. Performing a manipulation of the argument dbUrl results in code injection. The...
CVE-2026-5848
CVE-2026-5848 affects jeecgboot JimuReport up to version 2.3.0. The vulnerability lies in the Data Source Handler’s testConnection path, specifically the function DriverManager.getConnection, where manipulating the argument dbUrl can lead to code injection. The issue can be exploited remotely and...
CVE-2023-25496
A privilege escalation vulnerability was reported in Lenovo Drivers Management Lenovo Driver Manager that could allow a local user to execute code with elevated privileges...
CVE-2019-25244
Legrand BTicino Driver Manager F454 1.0.51 contains multiple web vulnerabilities that allow attackers to perform administrative actions without proper request validation. Attackers can exploit cross-site request forgery to change passwords and inject stored cross-site scripting payloads through...
CVE-2019-25244 Legrand BTicino Driver Manager F454 1.0.51 CSRF and Stored XSS Vulnerabilities
Legrand BTicino Driver Manager F454 1.0.51 contains multiple web vulnerabilities that allow attackers to perform administrative actions without proper request validation. Attackers can exploit cross-site request forgery to change passwords and inject stored cross-site scripting payloads through...
CVE-2019-25244
Affected software: Legrand BTicino Driver Manager F454 1.0.51. Vulnerabilities: web vulnerabilities enabling administrative actions via CSRF and stored XSS through unvalidated GET parameters. Root cause: lack of proper request validation. Impact: attacker could change passwords and inject stored ...
BTicino Legrand BTicino Driver Manager 安全漏洞
BTicino Legrand BTicino Driver Manager is a gateway integration and protocol conversion software from BTicino, Italy. A security vulnerability exists in BTicino Legrand BTicino Driver Manager that stems from a lack of proper request validation and could lead to cross-site request forgery attacks...