11730 matches found
CVE-2026-1961
CVE-2026-1961 affects Foreman via a command injection in Foreman's WebSocket proxy. The vulnerability arises from unsanitized hostname values from compute resource providers when building shell commands. An attacker operating a malicious compute resource server could achieve remote code execution...
CVE-2026-1961 Forman: foreman: remote code execution via command injection in websocket proxy
A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's WebSocket proxy implementation. This vulnerability arises from the system's use of unsanitized hostname values from compute resource providers when constructing shell commands. By operating...
CVE-2026-1961
A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's WebSocket proxy implementation. This vulnerability arises from the system's use of unsanitized hostname values from compute resource providers when constructing shell commands. By operating...
CVE-2026-1961
A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's WebSocket proxy implementation. This vulnerability arises from the system's use of unsanitized hostname values from compute resource providers when constructing shell commands. By operating...
CVE-2025-64433 vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
CVE-2025-64437 vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
GHSA-2R4R-5X78-MVQF vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
GHSA-46XP-26XH-HPQH vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
GHSA-QW6Q-3PGR-5CWQ vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
Update Rollup 1 for System Center 2025 Virtual Machine Manager
Update Rollup 1 for System Center 2025 Virtual Machine Manager Applies to Microsoft System Center 2025 Virtual Machine Manager Introduction This article lists the new enhancements and bug fixes that come with System Center Virtual Machine Manager 2025 UR1 release. This article also provides the...
PT-2026-28359
Name of the Vulnerable Software and Affected Versions EVerest versions prior to 2026.02.0 Description EVerest is an EV charging software stack. Versions prior to 2026.02.0 have a data race C++ undefined behavior triggered by a 1-phase ↔ 3-phase switch request ac switch three phases while charging...
GHSA-QW6Q-3PGR-5CWQ vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
GHSA-46XP-26XH-HPQH vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
CVE-2025-64324 vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
GHSA-2R4R-5X78-MVQF vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
CVE-2025-64437 vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester...
Eclipse Che machine-exec Unauthenticated RCE
This module exploits an unauthenticated remote code execution vulnerability in the Eclipse Che machine-exec service CVE-2025-12548. The machine-exec service, exposed on port 3333 within Red Hat OpenShift DevSpaces developer workspace containers, accepts WebSocket connections without authenticatio...
Security update for systemd
This update for systemd fixes the following issues: CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method bsc1259650. CVE-2026-29111: local unprivileged user can trigger an assert in systemd bsc1259418. udev: check for invalid chars in various fields...
Machine Learning Operations: Yesterday, Today, and Tomorrow
...
CVE-2026-23286
In the Linux kernel, the following vulnerability has been resolved: atm: lec: fix null-ptr-deref in lecarpclearvccs syzkaller reported a null-ptr-deref in lecarpclearvccs. This issue can be easily reproduced using the syzkaller reproducer. In the ATM LANE LAN Emulation module, the same atmvcc can...