10 matches found
EUVD-2025-23454
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-54955
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenNebula Community Edition CE before 7.0.0 and Enterprise Edition EE before 6.10.3 have a critical FireEdge race condition that can lead to full account...
CVE-2025-54955
OpenNebula Community Edition CE before 7.0.0 and Enterprise Edition EE before 6.10.3 have a critical FireEdge race condition that can lead to full account takeover. By exploiting this, an unauthenticated attacker can obtain a valid JSON Web Token JWT belonging to a legitimate user without knowled...
UBUNTU-CVE-2025-54955
OpenNebula Community Edition CE before 7.0.0 and Enterprise Edition EE before 6.10.3 have a critical FireEdge race condition that can lead to full account takeover. By exploiting this, an unauthenticated attacker can obtain a valid JSON Web Token JWT belonging to a legitimate user without knowled...
OpenNebula 竞争条件问题漏洞
OpenNebula is an OpenNebula open source cloud computing platform for managing heterogeneous distributed data center infrastructures. A competitive condition issue vulnerability exists in OpenNebula Community Edition prior to 7.0.0 and Enterprise Edition prior to 6.10.3, which stems from the...
CVE-2025-54955
OpenNebula Community Edition CE before 7.0.0 and Enterprise Edition EE before 6.10.3 have a critical FireEdge race condition that can lead to full account takeover. By exploiting this, an unauthenticated attacker can obtain a valid JSON Web Token JWT belonging to a legitimate user without knowled...
CVE-2025-54955
OpenNebula Community Edition CE before 7.0.0 and Enterprise Edition EE before 6.10.3 have a critical FireEdge race condition that can lead to full account takeover. By exploiting this, an unauthenticated attacker can obtain a valid JSON Web Token JWT belonging to a legitimate user without knowled...
CVE-2025-54955
CVE-2025-54955 affects OpenNebula Community Edition (CE) < 7.0.0 and Enterprise Edition (EE)
CVE-2025-54955
OpenNebula Community Edition CE before 7.0.0 and Enterprise Edition EE before 6.10.3 have a critical FireEdge race condition that can lead to full account takeover. By exploiting this, an unauthenticated attacker can obtain a valid JSON Web Token JWT belonging to a legitimate user without knowled...
PT-2025-31757 · Unknown +1 · Opennebula Enterprise Edition +2
Name of the Vulnerable Software and Affected Versions: OpenNebula Community Edition CE versions prior to 7.0.0 OpenNebula Enterprise Edition EE versions prior to 6.10.3 Description: A critical race condition exists in FireEdge that can lead to full account takeover. An unauthenticated attacker ca...