Lucene search
K

27017 matches found

ICS
ICS
added 2026/03/19 5:0 a.m.5 views

IGL-Technologies eParking.fi

RISK EVALUATION Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. 2. RECOMMENDED PRACTICES CISA recommends users take defensive...

5.9AI score
Exploits0References11
Microsoft Secure
Microsoft Secure
added 2026/03/18 4:0 p.m.8 views

Observability for AI Systems: Strengthening visibility for proactive risk detection

Adoption of Generative AI GenAI and agentic AI has accelerated from experimentation into real enterprise deployments. What began with copilots and chat interfaces has quickly evolved into powerful business systems that autonomously interact with sensitive data, call external APIs, connect to...

5.9AI score
Exploits0
Github Security Blog
Github Security Blog
added 2026/03/18 1:0 p.m.23 views

Heimdall: Path received via Envoy gRPC corrupted when containing query string

Summary When using heimdall in envoy gRPC decision API mode, wrong encoding of the query URL string allows rules with non-wildcard path expressions to be bypassed. The HTTP based decision API is NOT affected, and proxy mode is NOT affected either. Note: The issue can only lead to unintended acces...

8.2CVSS5.7AI score0.003EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2026/03/18 1:0 p.m.7 views

GHSA-R8X2-FHMF-6MXP Heimdall: Path received via Envoy gRPC corrupted when containing query string

Summary When using heimdall in envoy gRPC decision API mode, wrong encoding of the query URL string allows rules with non-wildcard path expressions to be bypassed. The HTTP based decision API is NOT affected, and proxy mode is NOT affected either. Note: The issue can only lead to unintended acces...

8.2CVSS5.7AI score0.003EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2026/03/18 11:16 a.m.5 views

CVE-2026-23247

In the Linux kernel, the following vulnerability has been resolved: tcp: secureseq: add back ports to TS offset This reverts 28ee1b746f49 "secureseq: downgrade to per-host timestamp offsets" tcptwrecycle went away in 2017. Zhouyan Deng reported off-path TCP source port leakage via SYN cookie...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/18 10:5 a.m.3 views

CVE-2026-23247

In the Linux kernel, the following vulnerability has been resolved: tcp: secureseq: add back ports to TS offset This reverts 28ee1b746f49 "secureseq: downgrade to per-host timestamp offsets" tcptwrecycle went away in 2017. Zhouyan Deng reported off-path TCP source port leakage via SYN cookie...

5.7AI score0.00118EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/03/18 10:5 a.m.30 views

CVE-2026-23247 tcp: secure_seq: add back ports to TS offset

In the Linux kernel, the following vulnerability has been resolved: tcp: secureseq: add back ports to TS offset This reverts 28ee1b746f49 "secureseq: downgrade to per-host timestamp offsets" tcptwrecycle went away in 2017. Zhouyan Deng reported off-path TCP source port leakage via SYN cookie...

0.00118EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/03/18 10:5 a.m.4 views

CVE-2026-23247

In the Linux kernel, the following vulnerability has been resolved: tcp: secureseq: add back ports to TS offset This reverts 28ee1b746f49 "secureseq: downgrade to per-host timestamp offsets" tcptwrecycle went away in 2017. Zhouyan Deng reported off-path TCP source port leakage via SYN cookie...

5.5CVSS5.2AI score0.00118EPSS
Exploits0
CVE
CVE
added 2026/03/18 10:5 a.m.41 views

CVE-2026-23247

CVE-2026-23247 is a Linux kernel TCP/TCP options issue that reintroduces port inclusion in the TS offset to mitigate an off-path TCP source port leakage via a SYN-cookie side-channel. The vulnerability is resolved by reverting a previous downgrade of timestamp offsets and performing a single siph...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References4Affected Software1
Snyk
Snyk
added 2026/03/18 8:46 a.m.5 views

Command Injection

Overview Glances is an A cross-platform curses-based monitoring tool Affected versions of this package are vulnerable to Command Injection via the securepopen function. An attacker can execute arbitrary commands by supplying specially crafted process names or container names containing shell...

8.5CVSS6.1AI score0.00243EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/18 7:34 a.m.3 views

CVE-2026-22321 Stack-Based Buffer Overflow in CLI Login Username Handling over CLI

A stack-based buffer overflow in the device's Telnet/SSH CLI login routine occurs when a unauthenticated attacker send an oversized or unexpected username input. An overflow condition crashes the thread handling the login attempt, forcing the session to close. Because other CLI sessions remain...

5.3CVSS6.2AI score0.00366EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/18 7:34 a.m.2 views

CVE-2026-22320

A stack-based buffer overflow in the CLI's TFTP file‑transfer command handling allows a low-privileged attacker with Telnet/SSH access to trigger memory corruption by supplying unexpected or oversized filename input. Exploitation results in the corruption of the internal buffer, causing the CLI a...

6.5CVSS6.2AI score0.00317EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/18 5:14 a.m.4 views

CVE-2026-32606

IncusOS is an immutable OS image dedicated to running Incus. Prior to 202603142010, the default configuration of systemd-cryptenroll as used by IncusOS through mkosi allows for an attacker with physical access to the machine to access the encrypted data without requiring any interaction by the...

7.6CVSS5.8AI score0.0014EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/03/18 5:14 a.m.5 views

CVE-2026-32606 IncusOS has a LUKS encryption bypass due to insufficient TPM policy

IncusOS is an immutable OS image dedicated to running Incus. Prior to 202603142010, the default configuration of systemd-cryptenroll as used by IncusOS through mkosi allows for an attacker with physical access to the machine to access the encrypted data without requiring any interaction by the...

7.6CVSS6.3AI score0.0014EPSS
Exploits0References7
CVE
CVE
added 2026/03/18 5:14 a.m.18 views

CVE-2026-32606

CVE-2026-32606 affects IncusOS (immutable OS image) where, prior to 202603142010, systemd-cryptenroll TPM-based LUKS key release can occur if PCR7/PCR11 conditions are met, allowing physical attackers to substitute the root partition, boot with a recovery key, and retrieve the LUKS master key via...

7.6CVSS5.8AI score0.0014EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2026/03/18 12:0 a.m.9 views

grub2 security update

2.06-114.0.1.el97.1 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with shim-aa64 that allows booting it Orabug: 37693946 - net/dns: Fix removal of DNS server Orabug:...

7.8CVSS5.8AI score0.00872EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/18 12:0 a.m.6 views

Cisco Secure Firewall Management Center Software RCE (cisco-sa-fmc-rce-NKhnULJh)

According to its self-reported version, Cisco Secure Firewall Management Center FMC is affected by a vulnerability. - A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to execute arbitrary...

10CVSS6.6AI score0.27551EPSS
Exploits4References4
Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.7 views

PT-2026-26091

Name of the Vulnerable Software and Affected Versions Heimdall versions 0.7.0-alpha through 0.17.10 Description Heimdall, a cloud native Identity Aware Proxy and Access Control Decision service, contains an issue where incorrect encoding of the query URL string can allow bypass of rules with...

8.2CVSS6AI score0.01322EPSS
Exploits25References154
Tenable Nessus
Tenable Nessus
added 2026/03/18 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: openssh (UTSA-2026-006246)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006246 advisory. ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used. Tenable has extracted the...

3.6CVSS6AI score0.00114EPSS
Exploits0References4
NVD
NVD
added 2026/03/17 11:16 p.m.4 views

CVE-2026-22727

Unprotected internal endpoints in Cloud Foundry Capi Release 1.226.0 and below, and CF Deployment v54.9.0 and below on all platforms allows any user who has bypassed the firewall to potentially replace droplets and therefore applications allowing them to access secure application information...

7.5CVSS0.00199EPSS
Exploits0References1
Rows per page
Query Builder