Lucene search
K

437 matches found

OSV
OSV
added 2026/04/02 12:16 p.m.11 views

UBUNTU-CVE-2026-23413

In the Linux kernel, the following vulnerability has been resolved: clsact: Fix use-after-free in init/destroy rollback asymmetry Fix a use-after-free in the clsact qdisc upon init/destroy rollback asymmetry. The latter is achieved by first fully initializing a clsact instance, and then in a seco...

7.8CVSS5.7AI score0.00119EPSS
Exploits0References3
CVE
CVE
added 2026/04/02 11:40 a.m.26 views

CVE-2026-23413

The CVE-2026-23413 entry concerns the Linux kernel: a use-after-free in the clsact qdisc during init/destroy rollback caused by asymmetrical initialization between ingress and egress sides. A failed replacement during clsact_init() (e.g., via tcf_block_get_ext()) could leave both ingress and egre...

7.8CVSS5.8AI score0.00119EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/04/02 11:40 a.m.29 views

CVE-2026-23413 clsact: Fix use-after-free in init/destroy rollback asymmetry

In the Linux kernel, the following vulnerability has been resolved: clsact: Fix use-after-free in init/destroy rollback asymmetry Fix a use-after-free in the clsact qdisc upon init/destroy rollback asymmetry. The latter is achieved by first fully initializing a clsact instance, and then in a seco...

7.8CVSS0.00119EPSS
Exploits0References5
Veracode
Veracode
added 2026/04/01 9:53 a.m.6 views

Improper Access Control

Cilium is vulnerable to improper access control. The vulnerability is due to missing validation of non-existent or unattached AWS security group IDs in egress policies, which allows an attacker to gain broader outbound network access than intended by the policy configuration...

5.5CVSS7.1AI score0.00161EPSS
Exploits0References6Affected Software2
RedhatCVE
RedhatCVE
added 2026/03/20 2:20 p.m.4 views

CVE-2026-32946

A flaw was found in Harden-Runner, a security agent for GitHub Actions runners. An attacker with existing code execution capabilities within a GitHub Actions workflow can bypass network egress policies, which are security measures designed to control outbound network connections. This bypass occu...

4.9CVSS6.2AI score0.00253EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/20 1:51 p.m.5 views

CVE-2026-32947

A flaw was found in Harden-Runner. A remote attacker with existing code execution within a GitHub Actions workflow could exploit a DNS over HTTPS DoH vulnerability to bypass network restrictions. This allows for the exfiltration of sensitive data by encoding it within DoH queries, which appear as...

4.9CVSS6.3AI score0.00305EPSS
Exploits0References5
NVD
NVD
added 2026/03/20 4:16 a.m.8 views

CVE-2026-32946

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies are enforced on GitHub runners by filtering...

4.6CVSS0.00253EPSS
Exploits0References2
OSV
OSV
added 2026/03/20 4:3 a.m.3 views

CVE-2026-32947 Egress Policy Bypass via DNS over HTTPS (DoH) in Harden-Runner (Community Tier)

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, a DNS over HTTPS DoH vulnerability allows attackers to bypass egress-policy: block network restrictions by tunneling exfiltrated data through permitted HTTPS endpoints like...

4.6CVSS6.3AI score0.00305EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/20 4:3 a.m.4 views

EUVD-2026-13539

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, a DNS over HTTPS DoH vulnerability allows attackers to bypass egress-policy: block network restrictions by tunneling exfiltrated data through permitted HTTPS endpoints like...

4.6CVSS6.2AI score0.00305EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/20 4:3 a.m.3 views

CVE-2026-32947

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, a DNS over HTTPS DoH vulnerability allows attackers to bypass egress-policy: block network restrictions by tunneling exfiltrated data through permitted HTTPS endpoints like...

4.6CVSS6.2AI score0.00305EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/20 4:3 a.m.22 views

CVE-2026-32947 Egress Policy Bypass via DNS over HTTPS (DoH) in Harden-Runner (Community Tier)

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, a DNS over HTTPS DoH vulnerability allows attackers to bypass egress-policy: block network restrictions by tunneling exfiltrated data through permitted HTTPS endpoints like...

4.6CVSS0.00305EPSS
Exploits0References2
CVE
CVE
added 2026/03/20 4:3 a.m.17 views

CVE-2026-32947

Harden-Runner (CI/CD security agent for GitHub Actions runners) versions 2.15.1 and earlier are affected by a DNS over HTTPS (DoH) vulnerability that enables data exfiltration through permitted HTTPS endpoints by encoding data (e.g., hostname) in DoH subdomains. The attack requires the attacker t...

4.9CVSS6.2AI score0.00305EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/03/20 3:58 a.m.8 views

CVE-2026-32946 Egress Policy Bypass via DNS over TCP in Harden-Runner (Community Tier)

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies are enforced on GitHub runners by filtering...

4.6CVSS6.2AI score0.00253EPSS
Exploits0References4
CVE
CVE
added 2026/03/20 3:58 a.m.22 views

CVE-2026-32946

Harden-Runner (GitHub Actions security agent) contains a vulnerability in versions 2.15.1 and earlier that allows bypassing egress-policy: block network restrictions by using DNS queries over TCP. The underlying issue is that DNS over TCP is not adequately restricted when the allowed-endpoints li...

4.6CVSS6.1AI score0.00253EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/20 3:58 a.m.1 views

CVE-2026-32946 Egress Policy Bypass via DNS over TCP in Harden-Runner (Community Tier)

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies are enforced on GitHub runners by filtering...

4.6CVSS6.3AI score0.00253EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/20 3:58 a.m.24 views

CVE-2026-32946 Egress Policy Bypass via DNS over TCP in Harden-Runner (Community Tier)

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies are enforced on GitHub runners by filtering...

4.6CVSS0.00253EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/20 3:58 a.m.4 views

CVE-2026-32946

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies are enforced on GitHub runners by filtering...

4.6CVSS6.1AI score0.00253EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2026/03/19 12:26 a.m.6 views

SUSE CVE-2026-23270

In the Linux kernel, the following vulnerability has been resolved: net/sched: Only allow actct to bind to clsact/ingress qdiscs and shared blocks As Paolo said earlier 1: "Since the blamed commit below, classify can return TCACTCONSUMED while the current skb being held by the defragmentation...

5.5CVSS5.6AI score0.00123EPSS
Exploits0References20
EUVD
EUVD
added 2026/03/18 6:31 p.m.8 views

EUVD-2026-12913

In the Linux kernel, the following vulnerability has been resolved: net/sched: Only allow actct to bind to clsact/ingress qdiscs and shared blocks As Paolo said earlier 1: "Since the blamed commit below, classify can return TCACTCONSUMED while the current skb being held by the defragmentation...

5.7AI score0.00123EPSS
Exploits0References5
OSV
OSV
added 2026/03/18 6:16 p.m.2 views

DEBIAN-CVE-2026-23270

In the Linux kernel, the following vulnerability has been resolved: net/sched: Only allow actct to bind to clsact/ingress qdiscs and shared blocks As Paolo said earlier 1: "Since the blamed commit below, classify can return TCACTCONSUMED while the current skb being held by the defragmentation...

7.8CVSS5.2AI score0.00123EPSS
Exploits0References1
Rows per page
Query Builder