CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

150 matches found

Tenable Nessus•added 2022/03/10 12:0 a.m.•52 views

openSUSE 15 Security Update : kernel (openSUSE-SU-2022:0760-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0760-1 advisory. - Amazon Linux has been made aware of a potential Branch Target Injection BTI issue sometimes referred to as Spectre variant 2. This is a...

7.8CVSS7.1AI score0.89063EPSS

Exploits113References69

Tenable Nessus•added 2022/03/10 12:0 a.m.•56 views

openSUSE 15 Security Update : kernel (openSUSE-SU-2022:0755-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0755-1 advisory. - Amazon Linux has been made aware of a potential Branch Target Injection BTI issue sometimes referred to as Spectre variant 2. This is a...

7.8CVSS7.1AI score0.89063EPSS

Exploits113References75

ThreatPost•added 2022/03/08 2:52 p.m.•240 views

Bug in the Linux Kernel Allows Privilege Escalation, Container Escape

To go along with the “Dirty Pipe” Linux security bug coming to light, two researchers from Huawei – Yiqi Sun and Kevin Wang – have discovered a vulnerability in the “control groups” feature of the Linux kernel which allows attackers to escape containers, escalate privileges and execute arbitrary...

8.4CVSS10AI score0.89063EPSS

Exploits120References11

ATTACKERKB•added 2022/03/03 7:15 p.m.•5 views

CVE-2022-0492

A vulnerability was found in the Linux kernel’s cgroupreleaseagentwrite in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 releaseagent feature to escalate privileges and bypass the namespace isolation unexpectedly...

7.8CVSS6.8AI score0.05528EPSS

In wildExploits12References12

NVD•added 2022/03/03 7:15 p.m.•22 views

CVE-2022-0492

7.8CVSS0.05528EPSS

Exploits12References11

OSV•added 2022/03/03 7:15 p.m.•3 views

DEBIAN-CVE-2022-0492

7.8CVSS6.7AI score0.05528EPSS

Exploits12References1

OSV•added 2022/03/03 7:15 p.m.•10 views

CVE-2022-0492

7.8CVSS7.8AI score

Exploits0References10

Prion•added 2022/03/03 7:15 p.m.•36 views

Design/Logic Flaw

6.9CVSS7.9AI score0.05528EPSS

Exploits12References10Affected Software19

Cvelist•added 2022/03/03 12:0 a.m.•37 views

CVE-2022-0492

8.1AI score0.05528EPSS

Exploits12References10

CVE•added 2022/03/03 12:0 a.m.•659 views

CVE-2022-0492

CVE-2022-0492 is a Linux kernel local-privilege-escalation flaw in the cgroups v1 release_agent handling (function cgroup_release_agent_write in kernel/cgroup/cgroup-v1.c). The issue arises because releasing the release_agent does not enforce proper capabilities, enabling a local attacker to esca...

7.8CVSS8AI score0.05528EPSS

In wildExploits12References11Affected Software1

Vulnrichment•added 2022/03/03 12:0 a.m.•12 views

CVE-2022-0492

6.9AI score0.05528EPSS

Exploits12References10

Debian CVE•added 2022/03/03 12:0 a.m.•94 views

CVE-2022-0492

7.8CVSS7AI score0.05528EPSS

Exploits12

Mageia•added 2022/02/15 8:50 p.m.•87 views

Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 5.15.23 and fixes at least the following security issues: A stack overflow flaw was found in the Linux kernel TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than th...

9CVSS1AI score0.67994EPSS

Exploits16References7

UbuntuCve•added 2022/02/08 12:0 a.m.•193 views

CVE-2022-0492

7.8CVSS6.9AI score0.05528EPSS

Exploits12References11

RedhatCVE•added 2022/02/07 11:59 a.m.•92 views

CVE-2022-0492

7.8CVSS1.2AI score0.05528EPSS

Exploits12References4

OSV•added 2021/12/12 5:15 a.m.•0 views

UBUNTU-CVE-2021-41805

HashiCorp Consul Enterprise before 1.8.17, 1.9.x before 1.9.11, and 1.10.x before 1.10.4 has Incorrect Access Control. An ACL token with the default operator:write permissions in one namespace can be used for unintended privilege escalation in a different namespace...

8.8CVSS7.1AI score0.3479EPSS

Exploits3References4

Tenable Nessus•added 2020/12/04 12:0 a.m.•40 views

Oracle Linux 7 : docker-cli / docker-engine (ELSA-2020-5966)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5966 advisory. - Fix for CVE-2020-15257 - Fix for CVE-2020-15157 - Address CVE-2020-16845 - update to 19.03.11 for CVE-2020-13401 - apply...

9.3CVSS7AI score0.9857EPSS

Exploits35References2

Veracode•added 2020/04/10 12:38 a.m.•33 views

Privilege Escalation

kernel-rt is vulnerable to privilege escalation. The vulnerability exists as a deficiency was found in the Linux kernel signals implementation. The killsomethinginfo function did not check if a process was outside the caller's namespace before sending the kill signal, making it possible to kill...

4.6CVSS3.4AI score0.00392EPSS

Exploits0References22Affected Software1

RedHat Linux•added 2019/04/30 5:48 p.m.•5 views

Moderate: Red Hat Bug Fix Advisory: Red Hat OpenStack Platform 14 bug fix and enhancement advisory

Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 14.0 Rocky for RHEL 7. Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service IaaS cloud running on commonly available...

8.8CVSS7.1AI score0.00999EPSS

Exploits0References33

NVD•added 2019/04/10 2:29 p.m.•26 views

CVE-2018-20321

An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default service account in a pod, and then use that pod to execute administrative privileged commands against the k8s cluster. This could be mitigated by isolating the...

9CVSS8.8AI score0.01799EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by