Lucene search
K

3171 matches found

CVE
CVE
added 2026/06/22 3:31 p.m.20 views

CVE-2026-41048

CVE-2026-41048 describes an authentication caching bug in qSnapper prior to version 1.3.3 where caching between different polkit methods could allow a local attacker to perform privileged actions (e.g., restore from a snapshot) even when the user should only be able to delete snapshots. Affected ...

8.4CVSS5.9AI score0.00133EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/22 3:31 p.m.31 views

CVE-2026-41048 Caching of Authentication allows Authentication Bypass in qSnapper

Incorrect caching of authentication between different polkit methods in qSnapper before version 1.3.3 allowed a local attacker to use functions like "restore from snapshot" even if only allowed to do "delete snapshot"...

8.4CVSS0.00133EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/22 6:26 a.m.5 views

redis: RESTORE invalid memory access may allow remote code execution

A flaw was found in Redis. An authenticated attacker with permission to execute the RESTORE command can send a crafted serialized payload that may lead to an invalid memory access due to an improper validation of the serialized values. This flaw can cause the server to crash and may allow arbitra...

8.8CVSS6.1AI score0.02995EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/22 6:26 a.m.12 views

Important: Red Hat Security Advisory: redis:6 security update

An update for the redis:6 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

8.8CVSS6.6AI score0.02995EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/22 2:32 a.m.6 views

redis: RESTORE invalid memory access may allow remote code execution

A flaw was found in Redis. An authenticated attacker with permission to execute the RESTORE command can send a crafted serialized payload that may lead to an invalid memory access due to an improper validation of the serialized values. This flaw can cause the server to crash and may allow arbitra...

8.8CVSS6.1AI score0.02995EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/22 12:0 a.m.12 views

PT-2026-51335

Name of the Vulnerable Software and Affected Versions qSnapper versions prior to 1.3.3 Description Incorrect caching of authentication between different polkit PolicyKit, a component for controlling privileges in Unix-like operating systems methods allows a local attacker to perform unauthorized...

8.4CVSS5.8AI score0.00133EPSS
Exploits0References5
OSV
OSV
added 2026/06/19 9:42 p.m.5 views

GHSA-48X2-6PR9-2JJF Network-AI: EnvironmentManager.restore() backup ID path traversal copies arbitrary directories into environment data

Summary EnvironmentManager.restoreenv, backupId computes the backup path with joinenvDir, '.backups', backupId and only checks that this path exists. It does not resolve the result or verify that it remains under data//.backups. A caller can pass a traversal backup ID such as...

6.1CVSS6AI score
Exploits0References4
Snyk
Snyk
added 2026/06/19 7:35 p.m.5 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization during the CRI checkpoint restore. An attacker can gain unauthorized access to resources by injecting arbitrary Container Device Interface CDI annotations into checkpoint image metadata, which are then trusted an...

9.6CVSS6AI score0.00412EPSS
Exploits0References2
OSV
OSV
added 2026/06/19 7:35 p.m.6 views

GHSA-33VJ-92QQ-66HC containerd CRI checkpoint restore CDI annotation smuggling

Impact containerd's CRI implementation improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during container restoration. When restoring a container from a checkpoint, containerd preserves CDI-related annotations from the checkpoint archive...

8.4CVSS6AI score0.00412EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/06/19 7:35 p.m.7 views

Arbitrary host CRI log file read via symlink following in CRI checkpoint restore

Impact A bug was found in containerd where the CRI plugin restores container.log from a checkpoint image without validating a symlinked path. This could result in reading an arbitrary file on the host via kubectl logs. Patches This bug has been fixed in the following containerd versions: 2.3.2...

8.2CVSS6AI score0.00208EPSS
Exploits0References2Affected Software1
Snyk
Snyk
added 2026/06/19 7:35 p.m.5 views

UNIX Symbolic Link (Symlink) Following

Overview Affected versions of this package are vulnerable to UNIX Symbolic Link Symlink Following in the CRI checkpoint restore plugin due to improper validation of symlinked paths. An attacker can access arbitrary files on the host by crafting a malicious checkpoint image and leveraging the...

8.2CVSS6AI score0.00208EPSS
Exploits0References2
OSV
OSV
added 2026/06/19 7:35 p.m.7 views

GHSA-RGH6-RFWX-V388 Arbitrary host CRI log file read via symlink following in CRI checkpoint restore

Impact A bug was found in containerd where the CRI plugin restores container.log from a checkpoint image without validating a symlinked path. This could result in reading an arbitrary file on the host via kubectl logs. Patches This bug has been fixed in the following containerd versions: 2.3.2...

7.1CVSS6AI score0.00208EPSS
Exploits0References2
NVD
NVD
added 2026/06/19 1:16 p.m.10 views

CVE-2026-56141

In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 account takeover via predictable restore codes was possible...

9.8CVSS0.00365EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 11:49 a.m.8 views

EUVD-2026-38006

In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 account takeover via predictable restore codes was possible...

9.8CVSS5.8AI score0.00365EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/19 11:49 a.m.33 views

CVE-2026-56141

In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 account takeover via predictable restore codes was possible...

9.8CVSS0.00365EPSS
Exploits0References1
CVE
CVE
added 2026/06/19 11:49 a.m.37 views

CVE-2026-56141

JetBrains Hub contains a critical vulnerability (CVE-2026-56141) allowing account takeover via predictable restore codes in multiple releases prior to 2026.1.13757 (including 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429). The CVSS 3.1 base score is 9.8 (CRITICAL) with...

9.8CVSS5.8AI score0.00365EPSS
Exploits0References1Affected Software1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in iptables

A buffer overflow in iptables-restore within netfilter iptables version 1.8.2 allows an attacker to at least cause the program to crash or potentially gain control of the system through a specially crafted iptables-save file. This issue is related to the addparamtoargv function in xshared.c...

4.2CVSS6.9AI score0.01809EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.9 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Fixed a use-after-free in the migration restore process. When an error is returned from xesriovpfmigrationrestoreproduce, the data pointer is not set to NULL, which can lead to a use-after-free in subsequent .write...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/19 3:39 a.m.8 views

CVE-2026-12050

A flaw was found in pgAdmin 4. An authenticated user with an active PostgreSQL session could exploit a SQL injection vulnerability in the named restore point endpoint. This allows the user to execute arbitrary SQL statements through an unexpected path. While this does not grant additional...

8.8CVSS6.1AI score0.00245EPSS
Exploits0References5
NVD
NVD
added 2026/06/19 12:16 a.m.13 views

CVE-2026-12050

SQL injection in pgAdmin 4's named restore point endpoint POST /browser/server/restorepoint/gid/sid. The user-supplied 'value' field was interpolated directly into the SQL string with str.format instead of being passed as a bound parameter, allowing an authenticated pgAdmin user with a connected...

8.8CVSS0.00245EPSS
Exploits0References2
Rows per page
Query Builder