Lucene search
K

4287 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/09 12:0 a.m.5 views

Siemens Ruggedcom ROX Improper Authentication (CVE-2022-0492)

A vulnerability was found in the Linux kernel's cgroupreleaseagentwrite in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 releaseagent feature to escalate privileges and bypass the namespace isolation unexpectedly. This plugin only...

7.8CVSS6.9AI score0.05528EPSS
Exploits12References3
Tenable Nessus
Tenable Nessus
added 2026/01/09 12:0 a.m.3 views

Siemens Ruggedcom ROX Privilege Dropping (CVE-2018-7169)

An issue was discovered in shadow 4.5. newgidmap in shadow-utils is setuid and allows an unprivileged user to be placed in a user namespace where setgroups2 is permitted. This allows an attacker to remove themselves from a supplementary group, which may allow access to certain filesystem paths if...

5.3CVSS6.2AI score0.01596EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/01/09 12:0 a.m.5 views

GitLab Enterprise Edition(EE) 安全漏洞

GitLab Enterprise Edition EE is a content management system from the U.S.-based GitLab, Inc. A security vulnerability exists in GitLab Enterprise Edition EE versions prior to 18.5.5, prior to 18.6.3, and prior to 18.7.1, which stems from manipulating namespace identifiers in API requests, and cou...

7.1CVSS6.5AI score0.00386EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/07 9:17 a.m.7 views

CVE-2025-1007

In OpenVSX version v0.9.0 to v0.20.0, the /user/namespace/namespace/details API allows a user to edit all namespace details, even if the user is not a namespace Owner or Contributor. The details include: name, description, website, support link and social media links. The same issues existed in...

6.9CVSS6.6AI score0.00473EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000227)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000227 advisory. An issue was discovered in rdstcpkillsock in net/rds/tcp.c in the Linux kernel before 5.0.8. There is a race condition leading to a use-after-free, related to net...

9.3CVSS6.3AI score0.04458EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.5 views

PT-2026-1714

Name of the Vulnerable Software and Affected Versions GitLab EE versions 18.4 through 18.5.4 GitLab EE versions 18.6 through 18.6.2 GitLab EE versions 18.7 through 18.7.0 Description An authenticated user could potentially access and utilize AI model settings from unauthorized namespaces. This...

7.5CVSS6.7AI score0.00386EPSS
Exploits0References19
GithubExploit
GithubExploit
added 2026/01/06 6:47 p.m.260 views

Exploit for OS Command Injection in Docker

🐳 ContainerBreaker - Docker Escape Exploit Simulator !Licen...

9.3CVSS9.7AI score0.9857EPSS
Exploits33
SUSE CVE
SUSE CVE
added 2026/01/06 12:28 a.m.3 views

SUSE CVE-2025-13888

A flaw was found in OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources CRs that trick the system into granting them elevated permissions in other namespaces, including privileged namespaces. An authenticated attacker can then use these elevated permissions to create privileged...

9.1CVSS6.7AI score0.0063EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/01 8:27 p.m.3 views

CVE-2025-14986

When frontend.enableExecuteMultiOperation is enabled, the server can apply namespace-scoped validation and feature gates for the embedded StartWorkflowExecutionRequest using its Namespace field rather than the outer, authorized ExecuteMultiOperationRequest.Namespace. This allows a caller authoriz...

5.3CVSS6.8AI score0.00415EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/01 8:27 p.m.4 views

CVE-2025-14987

When system.enableCrossNamespaceCommands is enabled on by default, the Temporal server permits certain workflow task commands e.g. StartChildWorkflowExecution, SignalExternalWorkflowExecution, RequestCancelExternalWorkflowExecution to target a different namespace than the namespace authorized at...

5.3CVSS7.2AI score0.00358EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.11 views

PT-2026-8197

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.18-rc1 and later Description The CephFS kernel client contains a flaw in the ceph mds auth match function where a NULL pointer dereference can occur if fs name is NULL. This issue arises during authorization checks with...

9.8CVSS6.8AI score0.0071EPSS
Exploits7References398
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.12 views

PT-2026-27732

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the radiotap parser. Specifically, the parser does not properly handle radiotap data containing undefined fields, leading to the potential for an...

5.5CVSS5.9AI score0.00123EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/31 12:28 a.m.3 views

SUSE CVE-2023-54200

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: always release netdev hooks from notifier This reverts "netfilter: nftables: skip netdev events generated on netns removal". The problem is that when a veth device is released, the veth release callback will...

6.3CVSS6.5AI score0.00168EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992897)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992897 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type Lion Ackermann...

7CVSS6.2AI score0.00204EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-54200

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nftables: always release netdev hooks from notifier This reverts netfilter: nftables: skip netdev events generated on netns removal. The problem is...

5.8AI score0.00168EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/30 9:30 p.m.3 views

EUVD-2025-205854

When frontend.enableExecuteMultiOperation is enabled, the server can apply namespace-scoped validation and feature gates for the embedded StartWorkflowExecutionRequest using its Namespace field rather than the outer, authorized ExecuteMultiOperationRequest.Namespace. This allows a caller authoriz...

5.3CVSS6.3AI score0.00415EPSS
Exploits0References4
OSV
OSV
added 2025/12/30 9:30 p.m.2 views

GHSA-HMHP-GH8M-C8XP Temporal has an Incorrect Authorization vulnerability

When system.enableCrossNamespaceCommands is enabled on by default, the Temporal server permits certain workflow task commands e.g. StartChildWorkflowExecution, SignalExternalWorkflowExecution, RequestCancelExternalWorkflowExecution to target a different namespace than the namespace authorized at...

5.3CVSS7.2AI score0.00358EPSS
Exploits0References6
EUVD
EUVD
added 2025/12/30 9:30 p.m.3 views

EUVD-2025-205855

When system.enableCrossNamespaceCommands is enabled on by default, the Temporal server permits certain workflow task commands e.g. StartChildWorkflowExecution, SignalExternalWorkflowExecution, RequestCancelExternalWorkflowExecution to target a different namespace than the namespace authorized at...

5.3CVSS6.7AI score0.00358EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/12/30 9:30 p.m.9 views

Temporal has a namespace policy bypass allowing requests to be authorized for incorrect contexts

When frontend.enableExecuteMultiOperation is enabled, the server can apply namespace-scoped validation and feature gates for the embedded StartWorkflowExecutionRequest using its Namespace field rather than the outer, authorized ExecuteMultiOperationRequest.Namespace. This allows a caller authoriz...

5.3CVSS6.9AI score0.00415EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/30 9:30 p.m.12 views

Temporal has an Incorrect Authorization vulnerability

When system.enableCrossNamespaceCommands is enabled on by default, the Temporal server permits certain workflow task commands e.g. StartChildWorkflowExecution, SignalExternalWorkflowExecution, RequestCancelExternalWorkflowExecution to target a different namespace than the namespace authorized at...

5.3CVSS7.3AI score0.00358EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder