CVE-2025-64507

CVE-2025-64507 affects Incus/LXD: in versions prior to 6.0.6 and 6.19.0 an unprivileged user who can access a container and a host with a custom storage volume that has security.shifted=true may create a setuid binary inside the container and execute it on the host to gain root. The issue require...

CVE-2025-64507

Incus is a system container and virtual machine manager. An issue in versions prior to 6.0.6 and 6.19.0 affects any Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true...

PT-2025-46210

Name of the Vulnerable Software and Affected Versions Incus versions prior to 6.0.6 Incus versions prior to 6.19.0 Description Incus is a system container and virtual machine manager. An issue affects any Incus user in an environment where an unprivileged user may have root access to a container...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990367)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990367 advisory. In the Linux kernel, the following vulnerability has been resolved: exec: Fix ToCToU between perm check and set-uid/gid usage When opening a file for exec via...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990131)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990131 advisory. In the Linux kernel, the following vulnerability has been resolved: exec: Fix ToCToU between perm check and set-uid/gid usage When opening a file for exec via...

PT-2025-44722

Name of the Vulnerable Software and Affected Versions OpenSMTPD affected versions not specified Description The software is susceptible to a denial-of-service condition through the use of a UNIX domain socket. The issue involves a potential for disruption of service. Recommendations At the moment...

Exploit for Uncontrolled Search Path Element in Needrestart_Project Needrestart

CVE-2024-4...

CVE-2025-12424

Privilege Escalation through SUID-bit Binary.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

EUVD-2025-36506

The “Diagnostics Tools” page of the web-based configuration utility does not properly validate user-controlled input, allowing an authenticated user with high privileges to inject commands into the command shell of the TropOS 4th Gen device. The injected commands can be exploited to execute sever...

CVE-2025-1038

The “Diagnostics Tools” page of the web-based configuration utility does not properly validate user-controlled input, allowing an authenticated user with high privileges to inject commands into the command shell of the TropOS 4th Gen device. The injected commands can be exploited to execute sever...

VulnCheck KEV: CVE-2025-6019

A Local Privilege Escalation LPE vulnerability was found in libblockdev. Generally, the "allowactive" setting in Polkit permits a physically present user to take certain actions based on the session type. Due to the way libblockdev interacts with the udisks daemon, an "allowactive" user on a syst...

EUVD-2003-0639

Malware in sbrugna...

EUVD-2017-5651

Malware in sbrugna...

EUVD-2015-1465

Malware in sbrugna...

EUVD-1999-1106

Malware in sbrugna...

EUVD-2014-0508

Malware in sbrugna...

EUVD-2009-1143

Malware in sbrugna...

EUVD-2017-14748

Malware in sbrugna...

EUVD-2013-6627

Malware in sbrugna...

EUVD-2011-1037

Malware in sbrugna...