Lucene search
K

27018 matches found

NVD
NVD
added 2026/03/17 11:16 p.m.4 views

CVE-2026-22727

Unprotected internal endpoints in Cloud Foundry Capi Release 1.226.0 and below, and CF Deployment v54.9.0 and below on all platforms allows any user who has bypassed the firewall to potentially replace droplets and therefore applications allowing them to access secure application information...

7.5CVSS0.00199EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/17 10:45 p.m.2 views

CVE-2026-22727

Unprotected internal endpoints in Cloud Foundry Capi Release 1.226.0 and below, and CF Deployment v54.9.0 and below on all platforms allows any user who has bypassed the firewall to potentially replace droplets and therefore applications allowing them to access secure application information...

7.5CVSS5.8AI score0.00199EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/17 3:20 p.m.5 views

CVE-2026-23759 Perle IOLAN STS/SCS Authenticated Command Injection via 'shell ps'

Perle IOLAN STS/SCS terminal server models with firmware versions prior to 6.0 allow authenticated OS command injection via the restricted shell accessed over Telnet or SSH. The shell 'ps' command does not perform proper argument sanitization and passes user-supplied parameters into an 'sh -c'...

8.6CVSS6.1AI score0.01509EPSS
Exploits0References3
CVE
CVE
added 2026/03/17 3:20 p.m.10 views

CVE-2026-23759

CVE-2026-23759 affects Perle IOLAN STS/SCS terminal server models with firmware earlier than 6.0. The issue is an authenticated OS command injection via the restricted shell accessed over Telnet or SSH. The shell's handling of the ps subcommand does not sanitize arguments, passing user-supplied p...

8.6CVSS6.1AI score0.01509EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/17 3:20 p.m.27 views

CVE-2026-23759 Perle IOLAN STS/SCS Authenticated Command Injection via 'shell ps'

Perle IOLAN STS/SCS terminal server models with firmware versions prior to 6.0 allow authenticated OS command injection via the restricted shell accessed over Telnet or SSH. The shell 'ps' command does not perform proper argument sanitization and passes user-supplied parameters into an 'sh -c'...

8.6CVSS0.01509EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/17 12:36 p.m.6 views

Security Bulletin: Race Condition in Eclipse Jersey (Versions 2.45, 3.0.16, 3.1.9) May Bypass Critical SSL Configurations and Compromise Secure Connections, affects watsonx.data

Summary In Eclipse Jersey versions 2.45, 3.0.16, 3.1.9 a race condition can cause ignoring of critical SSL configurations - such as mutual authentication, custom key/trust stores, and other security settings. This issue may result in SSLHandshakeException under normal circumstances, but under...

9.4CVSS5.8AI score0.00271EPSS
Exploits0Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/03/17 8:2 a.m.7 views

Pre-auth SSH DoS via unbounded zlib inflate

...

6.9CVSS5.8AI score0.00644EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/03/17 8:1 a.m.5 views

SFTP root escape via component-agnostic prefix check in ssh_sftpd

...

5.4CVSS5.8AI score0.00363EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/03/17 6:49 a.m.6 views

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS5.9AI score0.00579EPSS
Exploits1References8
Oracle linux
Oracle linux
added 2026/03/17 12:0 a.m.6 views

grub2 security update

2.12-29.0.1.el101.2 - efinet: Close and reopen card on failure Orabug: 37808688 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with shim-aa64 that allows booting it...

7.8CVSS5.8AI score0.00872EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.10 views

PT-2026-25958

Unprotected internal endpoints in Cloud Foundry Capi Release 1.226.0 and below, and CF Deployment v54.9.0 and below on all platforms allows any user who has bypassed the firewall to potentially replace droplets and therefore applications allowing them to access secure application information...

7.5CVSS5.8AI score0.00199EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2026/03/17 12:0 a.m.12 views

grub2 security update

2.02-170.0.1.el810.1 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with shim-aa64 that allows booting it Orabug: 37693946 - net/dns: Fix removal of DNS server Orabug:...

7.8CVSS5.8AI score0.01588EPSS
Exploits1
OSV
OSV
added 2026/03/16 8:41 p.m.2 views

GHSA-G2F6-PWVX-R275 OpneClaw accepts unsanitized iMessage attachment paths which allowed SCP remote-path command injection

Summary openclaw versions :. In affected releases, the remote host was normalized but the remote attachment path was not validated for shell metacharacters before being passed to the SCP remote operand. A sender-controlled iMessage attachment filename containing shell metacharacters could therefo...

9.2CVSS6.2AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/16 5:32 p.m.6 views

SUSE CVE-2026-23942

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Erlang OTP sshsftpd module allows Path Traversal. This vulnerability is associated with program files lib/ssh/src/sshsftpd.erl and program routines sshsftpd:iswithinroot/2. The SFTP server uses string...

5.4CVSS5.7AI score0.00363EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/03/16 5:32 p.m.5 views

SUSE CVE-2026-23943

Improper Handling of Highly Compressed Data Compression Bomb vulnerability in Erlang OTP ssh sshtransport modules allows Denial of Service via Resource Depletion. The SSH transport layer advertises legacy zlib compression by default and inflates attacker-controlled payloads pre-authentication...

5.3CVSS5.8AI score0.00644EPSS
Exploits0References6
OSV
OSV
added 2026/03/16 4:26 p.m.4 views

GHSA-WJ2J-QWCF-CFCC IncusOS has a LUKS encryption bypass due to insufficient TPM policy

The default configuration of systemd-cryptenroll as used by IncusOS through mkosi allows for an attacker with physical access to the machine to access the encrypted data without requiring any interaction by the system's owner or any tampering of Secure Boot state or kernel UKI boot image. That's...

7.6CVSS5.8AI score0.0014EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/16 3:30 p.m.3 views

EUVD-2026-12297

Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 allows local attackers to launch arbitrary activity with Secure Folder privilege...

8.4CVSS5.9AI score0.00159EPSS
Exploits0References2
NVD
NVD
added 2026/03/16 2:18 p.m.5 views

CVE-2026-20990

Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 allows local attackers to launch arbitrary activity with Secure Folder privilege...

8.4CVSS0.00159EPSS
Exploits0References1
OSV
OSV
added 2026/03/16 10:57 a.m.5 views

USN-8093-1 libssh vulnerability

It was discovered that libssh incorrectly performed bounds checking when processing SFTP extensions. If a client application queried extension data out of bounds, it could cause the application to crash, resulting in a denial of service, or exhibit unintended behavior...

7.5CVSS7.1AI score0.00631EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/16 4:31 a.m.1 views

CVE-2026-20990

Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 allows local attackers to launch arbitrary activity with Secure Folder privilege...

8.4CVSS5.9AI score0.00159EPSS
Exploits0References1
Rows per page
Query Builder