Lucene search
K

540 matches found

OSV
OSV
added 4 days ago8 views

ROOT-APP-PYPI-CVE-2025-69227 CVE-2025-69227 in rootio-aiohttp - Patched by Root

Root has patched CVE-2025-69227 in the rootio-aiohttp package for Root:PyPI. Multiple fixed versions available...

7.5CVSS5.4AI score0.00337EPSS
Exploits0
OSV
OSV
added 4 days ago13 views

ROOT-OS-DEBIAN-12-CVE-2026-1965 CVE-2026-1965 in rootio-curl - Patched by Root

Root has patched CVE-2026-1965 in the rootio-curl package for Root:Debian:12. Multiple fixed versions available...

6.5CVSS7.1AI score0.00259EPSS
Exploits0
OSV
OSV
added 5 days ago2 views

GHSA-Q6GH-6V2R-HJV3 Micronaut: DefaultHttpClient follows redirects, forwarding Authorization, Cookie, and Proxy-Authorization headers

Impact DefaultHttpClient follows redirects and forwards Authorization, Cookie, and Proxy-Authorization headers to redirect targets across domain boundaries. The blocklist only filters Host/Connection/TE/CT/CL. Additionally, no maximum redirect count exists, enabling infinite loop DoS. Affected:...

6.8CVSS6AI score
Exploits0References5
NVD
NVD
added last week7 views

CVE-2026-55435

Coder allows organizations to provision remote development environments via Terraform. Starting in version 2.30.0 and prior to versions 2.32.7, 2.33.8, and 2.34.2, AI Bridge proxy endpoints authenticate via Server.IsAuthorized in coderd/aibridgedserver, which validates key format, expiry, secret...

5.4CVSS0.00315EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/07/06 9:14 p.m.6 views

Coder's workspace app CORS origin check can be bypassed via UUID-based subdomain spoofing

Summary Coder's subdomain-based workspace app proxy allowed the same-owner CORS check to be bypassed. When a workspace-name subdomain segment parsed as a UUID, the workspace was resolved by ID without confirming the URL's username matched the real owner, while the CORS middleware trusted the...

6.8CVSS5.9AI score0.00222EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/07/06 8:58 p.m.4 views

GHSA-WRQ8-FCV5-8HVP Coder: Route hijacking through lack of validation of agent-supplied AllowedIPs in tailnet coordinator

Summary The tailnet coordinator validates that an agent's Addresses derive from its authenticated UUID but applies no equivalent check to AllowedIPs. The coordinator forwards agent-supplied AllowedIPs verbatim to tunnel peers which install them into the WireGuard peer configuration. Impact A...

8.2CVSS6AI score0.00405EPSS
Exploits0References3
OSV
OSV
added 2026/07/06 3:50 a.m.6 views

ROOT-OS-DEBIAN-13-CVE-2025-68322 CVE-2025-68322 in rootio-linux - Patched by Root

Root has patched CVE-2025-68322 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

5.4AI score0.00169EPSS
Exploits0
OSV
OSV
added 2026/07/05 7:32 a.m.7 views

ROOT-OS-UBUNTU-2204-CVE-2024-49937 CVE-2024-49937 in rootio-linux - Patched by Root

Root has patched CVE-2024-49937 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

5.5CVSS7.3AI score0.00234EPSS
Exploits0
OSV
OSV
added 2026/07/05 5:19 a.m.5 views

ROOT-OS-UBUNTU-2404-CVE-2025-40283 CVE-2025-40283 in rootio-linux - Patched by Root

Root has patched CVE-2025-40283 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.4AI score0.00175EPSS
Exploits0
OSV
OSV
added 2026/07/05 5:19 a.m.2 views

ROOT-OS-UBUNTU-2404-CVE-2026-23468 CVE-2026-23468 in rootio-linux - Patched by Root

Root has patched CVE-2026-23468 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
OSV
OSV
added 2026/07/05 5:19 a.m.8 views

ROOT-OS-UBUNTU-2404-CVE-2026-43169 CVE-2026-43169 in rootio-linux - Patched by Root

Root has patched CVE-2026-43169 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS5.8AI score0.00127EPSS
Exploits0
OSV
OSV
added 2026/07/05 5:19 a.m.5 views

ROOT-OS-UBUNTU-2404-CVE-2025-21875 CVE-2025-21875 in rootio-linux - Patched by Root

Root has patched CVE-2025-21875 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS7.6AI score0.00195EPSS
Exploits0
OSV
OSV
added 2026/07/05 5:19 a.m.4 views

ROOT-OS-UBUNTU-2404-CVE-2025-39894 CVE-2025-39894 in rootio-linux - Patched by Root

Root has patched CVE-2025-39894 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS5.4AI score0.0014EPSS
Exploits0
OSV
OSV
added 2026/07/05 4:22 a.m.4 views

ROOT-OS-DEBIAN-12-CVE-2026-53176 CVE-2026-53176 in rootio-linux - Patched by Root

Root has patched CVE-2026-53176 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

9.8CVSS5.8AI score0.00742EPSS
Exploits0
OSV
OSV
added 2026/07/05 3:40 a.m.5 views

ROOT-OS-DEBIAN-11-CVE-2025-38022 CVE-2025-38022 in rootio-linux - Patched by Root

Root has patched CVE-2025-38022 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

7.8CVSS7.2AI score0.00165EPSS
Exploits0
OSV
OSV
added 2026/07/05 3:40 a.m.2 views

ROOT-OS-DEBIAN-11-CVE-2023-52590 CVE-2023-52590 in rootio-linux - Patched by Root

Root has patched CVE-2023-52590 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

5.5CVSS6.9AI score0.00161EPSS
Exploits0
OSV
OSV
added 2026/07/05 3:40 a.m.4 views

ROOT-OS-DEBIAN-11-CVE-2024-44958 CVE-2024-44958 in rootio-linux - Patched by Root

Root has patched CVE-2024-44958 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

5.5CVSS7.3AI score0.00213EPSS
Exploits0
OSV
OSV
added 2026/07/05 3:40 a.m.4 views

ROOT-OS-DEBIAN-11-CVE-2022-49531 CVE-2022-49531 in rootio-linux - Patched by Root

Root has patched CVE-2022-49531 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

5.5CVSS7.2AI score0.0016EPSS
Exploits0
OSV
OSV
added 2026/07/05 3:40 a.m.9 views

ROOT-OS-DEBIAN-11-CVE-2026-43072 CVE-2026-43072 in rootio-linux - Patched by Root

Root has patched CVE-2026-43072 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

5.5CVSS5.8AI score0.00114EPSS
Exploits0
EUVD
EUVD
added 2026/07/02 8:29 p.m.14 views

EUVD-2026-37801

Steeltoe vulnerable to management-port isolation bypass via spoofed Host header...

8.2CVSS5.8AI score0.00238EPSS
Exploits0References5
Rows per page
Query Builder