Lucene search
K

32 matches found

RedHat Linux
RedHat Linux
added 2026/07/01 11:9 a.m.6 views

dynaconf: jinja2: Dynaconf: Arbitrary code execution via Server-Side Template Injection

A flaw was found in dynaconf, a Python configuration management tool. This Server-Side Template Injection SSTI vulnerability occurs due to unsafe template evaluation in the @Jinja resolver when the jinja2 package is installed. A remote attacker could exploit this by embedding malicious template...

8.1CVSS6.5AI score0.00526EPSS
Exploits1References7
CVE
CVE
added 2026/06/25 8:39 a.m.16 views

CVE-2026-53267

The CVE-2026-53267 entry concerns a Linux kernel netfilter nft_ct use-after-free style issue where a per-CPU template conntrack entry can be treated as a real ct, causing a 16-byte memcpy path to overflow the kernel stack when using NFT_REG32_15. The root cause is that a template ct is not reject...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2026/06/17 4:57 p.m.7 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.2AI score0.01131EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/05/27 6:24 p.m.131 views

LiquidJS is Vulnerable to Remote Code Execution

Summary It is possible to execute arbitrary code with crafted templates Details 1|valueOf - this when evaluating the filter liquid %assign r=1|valueOf% r|inspect json...

6.2AI score0.00089EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2026/05/26 7:37 a.m.13 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.3AI score0.01131EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/26 7:22 a.m.21 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.3AI score0.01131EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/26 5:33 a.m.22 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.3AI score0.01131EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/18 12:50 p.m.14 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.3AI score0.01131EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.20 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : Dynaconf vulnerability (USN-8231-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-8231-1 advisory. It was discovered that Dynaconf was incorrectly handling template evaluation in its string resolvers. A remote attacker could...

8.1CVSS6.1AI score0.00526EPSS
Exploits1References2
OSV
OSV
added 2026/05/06 9:6 a.m.7 views

USN-8231-1 python-dynaconf vulnerability

It was discovered that Dynaconf was incorrectly handling template evaluation in its string resolvers. A remote attacker could possibly use this issue to execute arbitrary code...

8.1CVSS6.1AI score0.00526EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2026/05/06 9:6 a.m.11 views

USN-8231-1: Dynaconf vulnerability

It was discovered that Dynaconf was incorrectly handling template evaluation in its string resolvers. A remote attacker could possibly use this issue to execute arbitrary code...

8.1CVSS6.1AI score0.00526EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.12 views

PT-2026-38540

It was discovered that Dynaconf was incorrectly handling template evaluation in its string resolvers. A remote attacker could possibly use this issue to execute arbitrary code...

8.1CVSS6.1AI score0.00526EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/03/24 10:16 p.m.15 views

Scriban has Multiple Denial-of-Service Vectors via Unbounded Resource Consumption During Expression Evaluation

Summary Scriban's expression evaluation contains three distinct code paths that allow an attacker who can supply a template to cause denial of service through unbounded memory allocation or CPU exhaustion. The existing safety controls LimitToString, LoopLimit do not protect these paths, giving...

6AI score
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2026/03/20 8:22 p.m.5 views

CVE-2026-33154 dynaconf Affected by Remote Code Execution (RCE) via Insecure Template Evaluation in @jinja Resolver

dynaconf is a configuration management tool for Python. Prior to version 3.2.13, Dynaconf is vulnerable to Server-Side Template Injection SSTI due to unsafe template evaluation in the @Jinja resolver. When the jinja2 package is installed, Dynaconf evaluates template expressions embedded in...

7.5CVSS5.7AI score0.00526EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/20 8:22 p.m.23 views

CVE-2026-33154 dynaconf Affected by Remote Code Execution (RCE) via Insecure Template Evaluation in @jinja Resolver

dynaconf is a configuration management tool for Python. Prior to version 3.2.13, Dynaconf is vulnerable to Server-Side Template Injection SSTI due to unsafe template evaluation in the @Jinja resolver. When the jinja2 package is installed, Dynaconf evaluates template expressions embedded in...

7.5CVSS0.00526EPSS
Exploits1References3
OSV
OSV
added 2026/03/20 8:22 p.m.4 views

CVE-2026-33154 dynaconf Affected by Remote Code Execution (RCE) via Insecure Template Evaluation in @jinja Resolver

dynaconf is a configuration management tool for Python. Prior to version 3.2.13, Dynaconf is vulnerable to Server-Side Template Injection SSTI due to unsafe template evaluation in the @Jinja resolver. When the jinja2 package is installed, Dynaconf evaluates template expressions embedded in...

7.5CVSS5.8AI score0.00526EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/02/24 12:0 a.m.8 views

Metabase < 0.57.13 / 0.58.x < 0.58.7 / 1.x < 1.57.13 / 1.58.x < 1.58.7 Information Disclosure

The version of Metabase installed on the remote host is prior to 0.57.13, 0.58.x prior to 0.58.7, 1.x prior to 1.57.13, or 1.58.x prior to 1.58.7. It is, therefore, affected by an information disclosure vulnerability: - Authenticated users are able to retrieve sensitive information from a Metabas...

7.7CVSS5.9AI score0.00257EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/23 1:30 p.m.5 views

CVE-2026-27464

Metabase is an open-source data analytics platform. In versions prior to 0.57.13 and versions 0.58.x through 0.58.6, authenticated users are able to retrieve sensitive information from a Metabase instance, including database access credentials. During testing, it was confirmed that a low-privileg...

7.7CVSS5.2AI score0.00257EPSS
Exploits0References1
NVD
NVD
added 2026/02/21 8:16 a.m.8 views

CVE-2026-27464

Metabase is an open-source data analytics platform. In versions prior to 0.57.13 and versions 0.58.x through 0.58.6, authenticated users are able to retrieve sensitive information from a Metabase instance, including database access credentials. During testing, it was confirmed that a low-privileg...

7.7CVSS0.00257EPSS
Exploits0References3
OSV
OSV
added 2026/02/21 7:57 a.m.7 views

CVE-2026-27464 Metabase: Server-Side Template Injection via Notifications Endpoint Leads to RCE

Metabase is an open-source data analytics platform. In versions prior to 0.57.13 and versions 0.58.x through 0.58.6, authenticated users are able to retrieve sensitive information from a Metabase instance, including database access credentials. During testing, it was confirmed that a low-privileg...

7.7CVSS5.5AI score0.00257EPSS
Exploits0References5
Rows per page
Query Builder