Lucene search
K

165084 matches found

Chainguard
Chainguard
added yesterday6 views

CVE-2026-46331 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-vmware...

7.8CVSS6.5AI score0.00321EPSS
Exploits10
Chainguard
Chainguard
added yesterday5 views

CVE-2026-53137 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-vmware...

7.8CVSS5.9AI score0.00143EPSS
Exploits0
Chainguard
Chainguard
added yesterday4 views

CVE-2026-39822 vulnerabilities

Vulnerabilities for packages: gitlab-workhorse-ce-fips, kubernetes, consul, zarf-fips, buildkitd, flux-fips, telegraf, jaeger-fips, prometheus-operator, cluster-api-fips, kube-conformance, kubernetes-dashboard, glab, ocm-kubernetes-controller, argo-cd-fips, karpenter-fips, k8s-device-plugin,...

7.8CVSS5.9AI score0.00181EPSS
Exploits0
Chainguard
Chainguard
added yesterday3 views

CVE-2026-48504 vulnerabilities

Vulnerabilities for packages: deno...

5.9AI score0.00096EPSS
Exploits0
Chainguard
Chainguard
added yesterday3 views

GHSA-W9WP-H8WV-79JX vulnerabilities

Vulnerabilities for packages: deno...

5.9AI score
Exploits0
Chainguard
Chainguard
added yesterday4 views

CVE-2026-42505 vulnerabilities

Vulnerabilities for packages: regclient, kubernetes, kubevirt-cdi-operator-fips, consul, slsa-verifier, kaniko, crossplane-provider-aws-inspector, gatus-fips, crossplane-provider-aws-redshift-fips, crossplane-provider-aws-servicediscovery, cluster-proportional-autoscaler, xeol, cilium-certgen,...

5.3CVSS5.9AI score0.00419EPSS
Exploits0
Chainguard
Chainguard
added yesterday3 views

GHSA-79CF-XCQC-C78W vulnerabilities

Vulnerabilities for packages: argo-workflows...

5.9AI score
Exploits0
Chainguard
Chainguard
added yesterday3 views

CVE-2026-6402 vulnerabilities

Vulnerabilities for packages: argo-workflows...

6.5CVSS5.9AI score0.00216EPSS
Exploits0
Wolfi
Wolfi
added yesterday7 views

CVE-2026-39822 vulnerabilities

Vulnerabilities for packages: cerbos, grype, flux, apko, cilium-cli, kube-fluentd-operator, kubernetes-dashboard, glab, dataplaneapi, containerd, pulumi, timestamp-authority, pinact, kine, k3s, cilium, docker-cli-buildx, fuse-overlayfs-snapshotter, pulumi-language-dotnet, libnvidia-container,...

7.8CVSS5.9AI score0.00181EPSS
Exploits0
Wolfi
Wolfi
added yesterday7 views

CVE-2026-48504 vulnerabilities

Vulnerabilities for packages: deno...

5.9AI score0.00096EPSS
Exploits0
Wolfi
Wolfi
added yesterday7 views

GHSA-W9WP-H8WV-79JX vulnerabilities

Vulnerabilities for packages: deno...

5.9AI score
Exploits0
Wolfi
Wolfi
added yesterday7 views

CVE-2026-42505 vulnerabilities

Vulnerabilities for packages: grype, kyverno-notation-aws, crossplane-provider-aws-route53, k8sgpt, nri-nginx, bom, vale, syft, mariadb-operator, ytt, nri-apache, argo-events, docker-cli-buildx, dagger, telegraf, terragrunt, kbld, rootlesskit, terraform, apache-exporter,...

5.3CVSS5.9AI score0.00419EPSS
Exploits0
NVD
NVD
added 2 days ago7 views

CVE-2026-54778

CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF UnixDomainSocket POSIX peer identity resolution uses non-reentrant getpwuid and getgrgid calls, allowing concurrent connections to attribute one connection's identity to...

6.2CVSS0.001EPSS
Exploits0References6
NVD
NVD
added 2 days ago4 views

CVE-2026-54776

CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, a CoreWCF service hosted on Unix Domain Sockets with PosixIdentity client credentials can accept connections that skip the application/unixposix stream upgrade before dispatching...

4.4CVSS0.00109EPSS
Exploits0References6
NVD
NVD
added 2 days ago5 views

CVE-2026-54772

CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, an unauthenticated remote attacker that can reach a NetTcpBinding, NetNamedPipeBinding, or UnixDomainSocketBinding endpoint can trigger premature EOF handling in the CoreWCF...

7.5CVSS0.00476EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2 days ago4 views

CVE-2026-15118

Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score0.00198EPSS
Exploits0
Debian CVE
Debian CVE
added 2 days ago4 views

CVE-2026-15114

Out of bounds read and write in Codecs in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. Chromium security severity: High...

8.8CVSS6AI score0.00149EPSS
Exploits0
Cvelist
Cvelist
added 2 days ago32 views

CVE-2026-54778 CoreWCF: UnixDomainSocket Non-Reentrant POSIX Identity Resolution

CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF UnixDomainSocket POSIX peer identity resolution uses non-reentrant getpwuid and getgrgid calls, allowing concurrent connections to attribute one connection's identity to...

6.2CVSS0.001EPSS
Exploits0References6
CVE
CVE
added 2 days ago13 views

CVE-2026-54778

CVE-2026-54778 : CoreWCF UnixDomainSocket suffers a race in POSIX peer identity resolution due to non-reentrant getpwuid/getgrgid calls, allowing identity misattribution or host process crash under contention. Affected versions are prior to 1.8.1 and 1.9.1; fixed in 1.8.1 and 1.9.1. Impact is lim...

6.2CVSS6AI score0.001EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago30 views

CVE-2026-54772 CoreWCF: Pre-authentication infinite-loop CPU exhaustion in CoreWCF net.tcp / net.pipe / net.uds framing handshake

CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, an unauthenticated remote attacker that can reach a NetTcpBinding, NetNamedPipeBinding, or UnixDomainSocketBinding endpoint can trigger premature EOF handling in the CoreWCF...

7.5CVSS0.00476EPSS
Exploits0References6
Rows per page
Query Builder