4099 matches found
GHSA-J5F8-GRM9-P9FC vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, nextcloud-server, wazuh-dashboard-fips, gitlab-rails-ce, opensearch-dashboards-fips, awx, wazuh-dashboard, opensearch-dashboards...
CVE-2026-44486 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, nextcloud-server, wazuh-dashboard-fips, gitlab-rails-ce, opensearch-dashboards-fips, awx, wazuh-dashboard, opensearch-dashboards...
CVE-2026-33812 vulnerabilities
Vulnerabilities for packages: mattermost-fips, mattermost...
CVE-2026-8769 vulnerabilities
Vulnerabilities for packages: langfuse-fips, langfuse...
GHSA-866G-F22W-33X8 vulnerabilities
Vulnerabilities for packages: langfuse-fips, langfuse...
GHSA-46Q3-7GV7-QMGG vulnerabilities
Vulnerabilities for packages: logstash-fips, kube-fluentd-operator, gitlab-rails-ce-fips, ruby4.0-rails, ruby3.2-rails, ruby3.3-rails, gitlab-rails-ce, logstash, kube-logging-operator, truffleruby, ruby3.4-rails...
CVE-2026-47241 vulnerabilities
Vulnerabilities for packages: logstash-fips, kube-fluentd-operator, gitlab-rails-ce-fips, ruby4.0-rails, ruby3.2-rails, ruby3.3-rails, gitlab-rails-ce, logstash, kube-logging-operator, truffleruby, ruby3.4-rails...
GHSA-8P34-64R3-MWG8 vulnerabilities
Vulnerabilities for packages: logstash-fips, kube-fluentd-operator, gitlab-rails-ce-fips, ruby4.0-rails, ruby3.2-rails, ruby3.3-rails, gitlab-rails-ce, logstash, kube-logging-operator, truffleruby, ruby3.4-rails...
GHSA-C4FP-CXRR-MJ66 vulnerabilities
Vulnerabilities for packages: logstash-fips, kube-fluentd-operator, gitlab-rails-ce-fips, ruby4.0-rails, ruby3.2-rails, ruby3.3-rails, gitlab-rails-ce, logstash, kube-logging-operator, truffleruby, ruby3.4-rails...
CVE-2026-47736 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-rails-ce-fips, gitlab-cng...
CVE-2026-47737 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-rails-ce-fips, gitlab-cng...
GHSA-QPGP-93VX-G8V8 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-rails-ce-fips, gitlab-cng...
Linux Distros Unpatched Vulnerability : CVE-2026-42770
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: When EVPPKEYderivesetpeer is called with a DHX X9.42 peer key, the peer key is not properly checked for the subgroup membership. Impact summary: ...
Linux Distros Unpatched Vulnerability : CVE-2026-42764
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: Receiving a QUIC initial packet with an invalid token may trigger a NULL pointer dereference in the OpenSSL QUIC server with address validation...
EUVD-2026-35474
Issue summary: A signed integer overflow when sizing the destination buffer for Unicode output in ASN1mbstringncopy can lead to a heap buffer overflow. Impact summary: A heap buffer overflow may lead to a crash or possibly attacker controlled code execution or other undefined behaviour. In...
EUVD-2026-35484
Issue summary: An attacker-controlled CMP Certificate Management Protocol server could trigger a NULL pointer dereference in a CMP client application. Impact summary: A NULL pointer dereference causes a crash of the application and a Denial of Service. An attacker controlling a CMP server or acti...
EUVD-2026-35481
Issue summary: Receiving a QUIC initial packet with an invalid token may trigger a NULL pointer dereference in the OpenSSL QUIC server with address validation disabled. Impact summary: NULL pointer dereference typically causes abnormal termination of the affected QUIC server process and a Denial ...
ALPINE-CVE-2026-42770
Issue summary: When EVPPKEYderivesetpeer is called with a DHX X9.42 peer key, the peer key is not properly checked for the subgroup membership. Impact summary: A malicious peer which presents an X9.42 key carrying the victim's p and g parameters, a forged q = r a small prime factor of the cofacto...
CVE-2026-42770
Issue summary: When EVPPKEYderivesetpeer is called with a DHX X9.42 peer key, the peer key is not properly checked for the subgroup membership. Impact summary: A malicious peer which presents an X9.42 key carrying the victim's p and g parameters, a forged q = r a small prime factor of the cofacto...
CVE-2026-42765
Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a self-signed trusted anchor, crashing the process. Impact summary: A NULL pointer dereference can...