CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

ATTACKERKB•added 2026/05/27 7:35 p.m.•8 views

CVE-2026-45134

LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to LangSmith SDK Python 0.8.0 and JS/TS 0.6.0, the LangSmith SDK's prompt pull methods pullprompt / pullpromptcommit in Python, pullPrompt / pullPromptCommit in JS/TS fetch and deserialize prompt manifests from...

7.1CVSS5.8AI score0.00036EPSS

Exploits0References2Affected Software1

Tenable Nessus•added 2026/05/06 12:0 a.m.•4 views

RHCOS 4 : OpenShift Container Platform 4.2.22 skopeo (RHSA-2020:0689)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:0689 advisory. - proglottis/gpgme: Use-after-free in GPGME bindings during container image pull CVE-2020-8945 Note that Nessus has not tested for this issue...

7.5CVSS5.8AI score0.01939EPSS

Exploits1References5

CNNVD•added 2026/04/09 12:0 a.m.•3 views

Helm 路径遍历漏洞

Helm is a Kubernetes package manager offered by the CNCF Foundation. Versions of Helm prior to 3.20.1 and 4.1.3 had a path traversal vulnerability. This vulnerability stemmed from specially crafted Charts, which could cause the helm pull --untar command to write Chart contents to an output...

4.8CVSS5.8AI score0.00005EPSS

Exploits0References3

RedHat Linux•added 2026/01/12 1:15 p.m.•3 views

git-lfs: Git LFS may write to arbitrary files via crafted symlinks

A flaw was found in Git LFS. Running git lfs checkout and git lfs pull in a specially crafted repository, specifically with symbolic or hard links tracked by Git LFS and pointing to files outside the working tree or in a bare repository, can cause Git LFS to write to arbitrary file system locatio...

8.6CVSS5.9AI score0.00057EPSS

Exploits0References9

RedHat Linux•added 2026/01/07 5:45 a.m.•3 views

git-lfs: Git LFS may write to arbitrary files via crafted symlinks

8.6CVSS5.9AI score0.00057EPSS

Exploits0References9

RedHat Linux•added 2026/01/07 5:31 a.m.•4 views

git-lfs: Git LFS may write to arbitrary files via crafted symlinks

8.6CVSS5.9AI score0.00057EPSS

Exploits0References9

Vulnrichment•added 2025/10/17 3:30 p.m.•2 views

CVE-2025-26625 Git LFS may write to arbitrary files via crafted symlinks

Git LFS is a Git extension for versioning large files. In Git LFS versions 0.5.2 through 3.7.0, when populating a Git repository's working tree with the contents of Git LFS objects, certain Git LFS commands may write to files visible outside the current Git working tree if symbolic or hard links...

8.6CVSS6.6AI score0.00057EPSS

Exploits0References5

CVE•added 2025/10/17 3:30 p.m.•36 views

CVE-2025-26625

Git LFS CVE-2025-26625 affects versions 0.5.2–3.7.0. When populating a working tree (and in bare repositories), git lfs checkout and git lfs pull may write to files outside the repository if crafted symbolic or hard links collide with paths tracked by Git LFS. The root cause is lack of checks for...

8.6CVSS6.6AI score0.00057EPSS

Exploits0References6