CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

85 matches found

CVE-2026-13201

CVE-2026-13201 concerns KubeVirt’s safepath package, where OpenAtNoFollow uses O_PATH|O_NOFOLLOW to obtain a descriptor for a path leaf, but downstream helpers access paths via /proc/self/fd/N. If the leaf is a symlink, the kernel dereferences it, bypassing intended no-follow protection. An attac...

7.3CVSS6AI score0.00124EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: afs: Fixed the maximum length of cell names. The kafs filesystem limits the maximum length of a cell to 256 bytes. However, a problem arises when someone attempts to do this: kafs tries to create a directory under /proc/net/afs/...

5.5CVSS6.2AI score0.002EPSS

Exploits0References2

ATTACKERKB•added 2026/05/27 5:11 p.m.•9 views

CVE-2026-45548

Budibase is an open-source low-code platform. Prior to 3.34.8, the processUrlFile function in packages/server/src/automations/steps/ai/extract.ts uses fetchfileUrl directly without the IP blacklist validation that is consistently applied to all other automation steps. This allows an authenticated...

7.7CVSS5.8AI score0.00258EPSS

Exploits0References3Affected Software1

Qualys Blog•added 2026/05/20 3:40 p.m.•15 views

CVE-2026-46333: Local Root Privilege Escalation and Credential Disclosure in the Linux Kernel ptrace Path

The Qualys Threat Research Unit TRU has discovered and published the full advisory for CVE-2026-46333, a logic flaw in the Linux kernel's ptracemayaccess function that permits an unprivileged local user to disclose sensitive files and execute arbitrary commands as root on default installations of...

7.1CVSS6.3AI score0.01209EPSS

Exploits5

OSV•added 2026/05/12 3:28 p.m.•4 views

CLSA-2026-1778599722 Fix CVE(s): CVE-2026-4878

SECURITY UPDATE: TOCTOU race condition in capsetfile - debian/patches/CVE-2026-4878.patch: open the target file and operate on /proc/self/fd/N so the inode is locked between the regular-file check and the xattr update - CVE-2026-4878...

7CVSS5.8AI score0.00188EPSS

Exploits1References1

Vulnrichment•added 2026/04/27 12:0 a.m.•3 views

CVE-2026-38934

Cross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileges and obtain sensitive information via the public/settingsprocess.php...

5.3AI score0.00264EPSS

Exploits0References3

RedHat Linux•added 2026/03/12 9:34 p.m.•4 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS7.3AI score0.00526EPSS

Exploits1References6

EUVD•added 2025/12/04 2:50 p.m.•1 views

EUVD-2025-201186

In the Linux kernel, the following vulnerability has been resolved: pidfs: validate extensible ioctls Validate extensible ioctls stricter than we do now...

6AI score0.00158EPSS

Exploits0References3

Tenable Nessus•added 2025/11/13 12:0 a.m.•4 views

SUSE SLES15 / openSUSE 15 Security Update : podman (SUSE-SU-2025:4081-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4081-1 advisory. - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 -...

8.4CVSS6.9AI score0.00673EPSS

Exploits4References9

OSV•added 2025/11/09 7:52 a.m.•7 views

MGASA-2025-0271 Updated opencontainers-runc packages fix security vulnerabilities

The way masked paths are implemented in runc can be exploited to cause the host system to crash or halt CVE-2025-31133 and a flaw in /dev/console bind-mounts can lead to container escape CVE-2025-52565. Also, arbitrary write gadgets and procfs write redirects could be used to engineer container...

8.4CVSS6.9AI score0.00673EPSS

Exploits4References5

Positive Technologies•added 2025/11/04 12:0 a.m.•3 views

PT-2025-45373

Name of the Vulnerable Software and Affected Versions runc versions 1.0.0-rc3 through 1.2.7 runc versions 1.3.0-rc.1 through 1.3.2 runc versions 1.4.0-rc.1 through 1.4.0-rc.2 Description Insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside a container allow an attacker to tri...

8.4CVSS6.7AI score0.00526EPSS

Exploits1References158

OSV•added 2025/10/27 9:15 p.m.•3 views

CVE-2025-12326

A vulnerability was found in shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5. This vulnerability affects unknown code of the file /process.php of the component POST Request Handler. The manipulation of the argument un results in sql injection. The attack can be launched remotely...

7.5CVSS5.8AI score0.00414EPSS

Exploits1References3

EUVD•added 2025/10/27 9:2 p.m.•3 views

EUVD-2025-36349

7.5CVSS7.2AI score0.00414EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2011-3478

Malware in sbrugna...

5.6CVSS6.4AI score0.00366EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views