12296 matches found
CVE-2026-23529
Kafka Connect BigQuery Connector is an implementation of a sink connector from Apache Kafka to Google BigQuery. Prior to 2.11.0, there is an arbitrary file read in Google BigQuery Sink connector. Aiven's Google BigQuery Kafka Connect Sink connector requires Google Cloud credential configurations...
CVE-2026-0915
creationtimestamp| type| source ---|---|--- 2026-01-16 16:24:21+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3mckj527au72q 2026-01-16 16:33:26+00:00| seen| https://bsky.app/profile/andersonc0d3.bsky.social/post/3mckjn5hthc2w 2026-01-16 16:33:49+00:00| seen|...
CVE-2026-1003
creationtimestamp| type| source ---|---|--- 2026-01-16 10:19:10+00:00| seen| https://gist.github.com/Darkcrai86/31070bcecaf6d68688cd91fbdac4075b 2026-01-16 11:39:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcjza4yndf2c 2026-03-31 17:56:04+00:00| seen|...
CVE-2026-1004
creationtimestamp| type| source ---|---|--- 2026-01-16 10:18:23+00:00| seen| https://gist.github.com/Darkcrai86/feae6587990a534b5cc78ae9c3947462 2026-01-16 11:49:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcjzrzwo6b2x...
CVE-2025-14757
creationtimestamp| type| source ---|---|--- 2026-01-16 10:17:28+00:00| seen| https://gist.github.com/Darkcrai86/b00ea4c9c6b92db6ef9763f8eda8d6eb 2026-01-16 11:35:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcjyyhftv52c...
CVE-2025-14844
creationtimestamp| type| source ---|---|--- 2026-01-16 09:54:13+00:00| seen| https://gist.github.com/Darkcrai86/6f52ab341fb429621991e742e432ca84 2026-01-16 11:44:28+00:00| seen| https://gist.github.com/Darkcrai86/a487b183a65b626789a86bfa85de1223 2026-01-16 12:05:47+00:00| seen|...
MiracleLinux 4 : sudo-1.8.6p3-19.AXS4 (AXSA:2015-227:01)
The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2015-227:01 advisory. Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all...
PT-2026-3320
Name of the Vulnerable Software and Affected Versions Skipper versions prior to 0.23.0 Description Skipper is an HTTP router and reverse proxy for service composition. The default configuration before version 0.23.0, specifically -lua-sources=inline,file, allowed untrusted users to create Lua...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001070)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001070 advisory. nfsd in the Linux kernel through 4.6.3 allows local users to bypass intended file-permission restrictions by setting a POSIX ACL, related to nfs2acl.c, nfs3acl.c, an...
GHSA-G2PG-6438-JWPF devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse
Summary Certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse input from untrusted sources. This affects applications using devalue.parse on externally-supplied data. The root cause is the ArrayBuffer...
CVE-2026-21913
creationtimestamp| type| source ---|---|--- 2026-01-15 21:38:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcik775ncy2r 2026-01-15 21:54:34+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcil4m2oe427 2026-01-15 22:04:35+00:00| seen|...
CVE-2026-22774
creationtimestamp| type| source ---|---|--- 2026-01-15 20:00:42+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcieqy4xwp2u 2026-01-15 20:54:55+00:00| seen| https://bsky.app/profile/isabelroses.com/post/3mcihrxhg6h2z 2026-01-16 02:26:07+00:00| seen|...
Devalue is vulnerable to denial of service due to memory exhaustion in devalue.parse
Summary Certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse input from untrusted sources. This affects applications using devalue.parse on externally-supplied data. The root cause is the typed array...
CVE-2026-0897
A flaw was found in Keras. A remote attacker can cause a Denial of Service DoS by providing a specially crafted .keras archive containing a model weights file model.weights.h5 that declares an extremely large data shape. This can lead to excessive memory allocation, resulting in memory exhaustion...
CVE-2026-22916
creationtimestamp| type| source ---|---|--- 2026-01-15 14:28:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mchs6u4i5h2x 2026-01-15 15:12:37+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115899757567671679...
CVE-2026-22913
creationtimestamp| type| source ---|---|--- 2026-01-15 14:03:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mchqs3uhuv2c 2026-01-15 15:12:35+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115899757567671679...
CVE-2026-22908
creationtimestamp| type| source ---|---|--- 2026-01-15 13:42:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mchpn6zmlb2e 2026-01-15 13:48:25+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mchpxbpq4g2a 2026-01-15 15:12:35+00:00| seen|...
CVE-2026-0713
creationtimestamp| type| source ---|---|--- 2026-01-15 13:37:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mchpeamcva2c 2026-01-15 13:52:08+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mchq5wfeph2u 2026-01-15 13:52:33+00:00| seen|...
CVE-2026-22907
creationtimestamp| type| source ---|---|--- 2026-01-15 13:32:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mchp3c6pzn2o 2026-01-15 13:48:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mchpx2etni2z 2026-01-15 15:12:35+00:00| seen|...
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
A flaw was found in OpenSSH where control characters in usernames were not properly validated when sourced from untrusted inputs like the command line or configuration expansion. If a ProxyCommand is used, these control characters could modify command behavior, potentially leading to code executi...