485 matches found
CVE-2025-68161 vulnerabilities
Vulnerabilities for packages: solr, wavefront-proxy, apache-tika, neo4j, druid, logstash, zipkin, kafka, apache-activemq-artemis, apache-pulsar, infinispan, flink, kserve-modelmesh, akhq, strimzi-kafka-operator, celeborn, confluent-kafka, opensearch, spark...
CVE-2025-38678 affecting package kernel for versions less than 6.6.117.1-1
CVE-2025-38678 affecting package kernel for versions less than 6.6.117.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-14714
An Authentication Bypass vulnerability existed where the application bundled an interpreter Python that inherits the Transparency, Consent, and Control TCC permissions granted by the user to the main application bundle By executing the bundled interpreter directly the attacker's scripts run with...
GHSA-HFQX-732W-XRRW vulnerabilities
Vulnerabilities for packages: python...
firefox: thunderbird: Use-after-free in the Audio/Video component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Audio/Video component...
GHSA-C354-RM47-933J vulnerabilities
Vulnerabilities for packages: gitlab-operator-fips...
GHSA-G592-5FXH-QHRV vulnerabilities
Vulnerabilities for packages: gitlab-operator-fips...
GHSA-JC72-5MCM-WV54 vulnerabilities
Vulnerabilities for packages: gitlab-operator-fips...
CVE-2020-11505 vulnerabilities
Vulnerabilities for packages: gitlab-operator-fips...
GHSA-QQGX-2P2H-9C37 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce...
CVE-2021-21353 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce...
CVE-2018-7408 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce...
CVE-2019-20920 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce...
GHSA-65CH-62R8-G69G vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines, argo-workflows, jitsucom-jitsu, opensearch-dashboards, kubeflow-centraldashboard...
CVE-2025-13466
body-parser 2.2.0 is vulnerable to denial of service due to inefficient handling of URL-encoded bodies with very large numbers of parameters. An attacker can send payloads containing thousands of parameters within the default 100KB request size limit, causing elevated CPU and memory usage. This c...
CVE-2025-13470
In RNP version 0.18.0 a refactoring regression causes the symmetric session key used for Public-Key Encrypted Session Key PKESK packets to be left uninitialized except for zeroing, resulting in it always being an all-zero byte array. Any data encrypted using public-key encryption in this release...
firefox: thunderbird: Same-origin policy bypass in the DOM: Workers component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Same-origin policy bypass in the DOM: Workers component...
CVE-2025-39916 affecting package kernel for versions less than 6.6.112.1-1
CVE-2025-39916 affecting package kernel for versions less than 6.6.112.1-1. A patched version of the package is available...
CVE-2025-39971 affecting package kernel for versions less than 6.6.112.1-1
CVE-2025-39971 affecting package kernel for versions less than 6.6.112.1-1. A patched version of the package is available...
firefox: thunderbird: Race condition in the Graphics component
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Race condition in the Graphics component...