165084 matches found
CVE-2026-46331 vulnerabilities
Vulnerabilities for packages: linux-gcp, linux-vmware...
CVE-2026-53137 vulnerabilities
Vulnerabilities for packages: linux-gcp, linux-vmware...
CVE-2026-39822 vulnerabilities
Vulnerabilities for packages: gitlab-workhorse-ce-fips, kubernetes, consul, zarf-fips, buildkitd, flux-fips, telegraf, jaeger-fips, prometheus-operator, cluster-api-fips, kube-conformance, kubernetes-dashboard, glab, ocm-kubernetes-controller, argo-cd-fips, karpenter-fips, k8s-device-plugin,...
CVE-2026-48504 vulnerabilities
Vulnerabilities for packages: deno...
GHSA-W9WP-H8WV-79JX vulnerabilities
Vulnerabilities for packages: deno...
CVE-2026-42505 vulnerabilities
Vulnerabilities for packages: regclient, kubernetes, kubevirt-cdi-operator-fips, consul, slsa-verifier, kaniko, crossplane-provider-aws-inspector, gatus-fips, crossplane-provider-aws-redshift-fips, crossplane-provider-aws-servicediscovery, cluster-proportional-autoscaler, xeol, cilium-certgen,...
GHSA-79CF-XCQC-C78W vulnerabilities
Vulnerabilities for packages: argo-workflows...
CVE-2026-6402 vulnerabilities
Vulnerabilities for packages: argo-workflows...
CVE-2026-39822 vulnerabilities
Vulnerabilities for packages: cerbos, grype, flux, apko, cilium-cli, kube-fluentd-operator, kubernetes-dashboard, glab, dataplaneapi, containerd, pulumi, timestamp-authority, pinact, kine, k3s, cilium, docker-cli-buildx, fuse-overlayfs-snapshotter, pulumi-language-dotnet, libnvidia-container,...
CVE-2026-48504 vulnerabilities
Vulnerabilities for packages: deno...
GHSA-W9WP-H8WV-79JX vulnerabilities
Vulnerabilities for packages: deno...
CVE-2026-42505 vulnerabilities
Vulnerabilities for packages: grype, kyverno-notation-aws, crossplane-provider-aws-route53, k8sgpt, nri-nginx, bom, vale, syft, mariadb-operator, ytt, nri-apache, argo-events, docker-cli-buildx, dagger, telegraf, terragrunt, kbld, rootlesskit, terraform, apache-exporter,...
CVE-2026-54778
CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF UnixDomainSocket POSIX peer identity resolution uses non-reentrant getpwuid and getgrgid calls, allowing concurrent connections to attribute one connection's identity to...
CVE-2026-54776
CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, a CoreWCF service hosted on Unix Domain Sockets with PosixIdentity client credentials can accept connections that skip the application/unixposix stream upgrade before dispatching...
CVE-2026-54772
CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, an unauthenticated remote attacker that can reach a NetTcpBinding, NetNamedPipeBinding, or UnixDomainSocketBinding endpoint can trigger premature EOF handling in the CoreWCF...
CVE-2026-15118
Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-15114
Out of bounds read and write in Codecs in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. Chromium security severity: High...
CVE-2026-54778 CoreWCF: UnixDomainSocket Non-Reentrant POSIX Identity Resolution
CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF UnixDomainSocket POSIX peer identity resolution uses non-reentrant getpwuid and getgrgid calls, allowing concurrent connections to attribute one connection's identity to...
CVE-2026-54778
CVE-2026-54778 : CoreWCF UnixDomainSocket suffers a race in POSIX peer identity resolution due to non-reentrant getpwuid/getgrgid calls, allowing identity misattribution or host process crash under contention. Affected versions are prior to 1.8.1 and 1.9.1; fixed in 1.8.1 and 1.9.1. Impact is lim...
CVE-2026-54772 CoreWCF: Pre-authentication infinite-loop CPU exhaustion in CoreWCF net.tcp / net.pipe / net.uds framing handshake
CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, an unauthenticated remote attacker that can reach a NetTcpBinding, NetNamedPipeBinding, or UnixDomainSocketBinding endpoint can trigger premature EOF handling in the CoreWCF...