Lucene search
K

575 matches found

Chainguard
Chainguard
added 7 hours ago2 views

CVE-2026-12029 vulnerabilities

Vulnerabilities for packages: chromium...

8.3CVSS5.8AI score0.00191EPSS
Exploits0
Wolfi
Wolfi
added 7 hours ago2 views

CVE-2026-11248 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS5.8AI score0.00241EPSS
Exploits0
Wolfi
Wolfi
added 7 hours ago2 views

CVE-2026-11232 vulnerabilities

Vulnerabilities for packages: chromium...

5.4CVSS6AI score0.00146EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:30 p.m.3 views

CVE-2026-53087

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix leaking freebds While reclaiming the tx queue we fast forward the write pointer to drop any data in flight. These dropped frames are not added back to the pool of free bds. We also need to tell the netdev that ...

7.5CVSS5.7AI score0.00376EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:28 p.m.3 views

CVE-2026-52949

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix ttmboshrink infinite LRU walk on backup failure Apply the same fix as b2ed01e7ad "drm/ttm: Fix ttmboswapout infinite LRU walk on swapout failure" to the ttmboshrink path. Move delbulkmove from before the backup to...

5.7AI score0.00162EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/12 1:17 a.m.4 views

GHSA-282G-W5FH-9Q49 vulnerabilities

Vulnerabilities for packages: chromium...

5.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.14 views

PT-2026-49035

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.5.18 Description A policy enforcement issue exists in the system.run safe-bin allowlist validation on POSIX nodes. This flaw allows shell expansion to modify how commands are interpreted. Authenticated operators...

8.3CVSS5.2AI score0.00191EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/06/11 1:9 p.m.6 views

openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

A flaw was found in OpenSSL. An integer truncation vulnerability in the ASN.1 decoder can occur when processing a crafted DER-encoded ASN.1 structure with a primitive element exceeding 2 gigabytes. A remote attacker could exploit this to cause a heap buffer over-read. This may lead to an...

7.5CVSS5.6AI score0.00513EPSS
Exploits0References4
OSV
OSV
added 2026/05/29 1:33 p.m.13 views

OESA-2026-2476 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

7CVSS5.9AI score0.00552EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 1:33 p.m.13 views

OESA-2026-2475 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

7CVSS5.9AI score0.00552EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux - уязвимость в netty

Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high-performance protocol servers and clients. Before version 4.1.59.Final, there was a vulnerability on Unix-like systems involving an insecure temporary file. When Netty’s...

6.2CVSS6.7AI score0.01777EPSS
Exploits1References1
NVD
NVD
added 2026/05/18 8:16 p.m.19 views

CVE-2026-45246

Summarize prior to 0.15.1 contains an insecure file permission vulnerability in the refresh-free configuration rewrite path that allows local users to read sensitive credentials by exploiting default filesystem permissions. When the refresh-free path rewrites the configuration file, it creates th...

6.8CVSS0.00137EPSS
Exploits1References4
EUVD
EUVD
added 2026/05/18 7:3 p.m.11 views

EUVD-2026-30799

Summarize prior to 0.15.1 contains an insecure file permission vulnerability in the refresh-free configuration rewrite path that allows local users to read sensitive credentials by exploiting default filesystem permissions. When the refresh-free path rewrites the configuration file, it creates th...

6.8CVSS5.8AI score0.00137EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.15 views

PT-2026-41725

Name of the Vulnerable Software and Affected Versions Summarize versions prior to 0.15.1 Description An insecure file permission issue exists in the refresh-free configuration rewrite path. When the software rewrites the configuration file, it creates the replacement using default process umask...

6.8CVSS5.8AI score0.00137EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2026/05/16 1:11 a.m.18 views

SUSE CVE-2026-46483

Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tarVimuntar in runtime/autoload/tar.vim when decompressing .tgz archives on Unix-like systems. The function builds :!gunzip and :!gzip -d commands using shellescapetartail without the...

7.8CVSS5.9AI score0.00552EPSS
Exploits0References13
OSV
OSV
added 2026/05/15 3:16 p.m.6 views

ALPINE-CVE-2026-46483

Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tarVimuntar in runtime/autoload/tar.vim when decompressing .tgz archives on Unix-like systems. The function builds :!gunzip and :!gzip -d commands using shellescapetartail without the...

7CVSS5.9AI score0.00552EPSS
Exploits0References1
NVD
NVD
added 2026/05/15 3:16 p.m.16 views

CVE-2026-46483

Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tarVimuntar in runtime/autoload/tar.vim when decompressing .tgz archives on Unix-like systems. The function builds :!gunzip and :!gzip -d commands using shellescapetartail without the...

7CVSS0.00552EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/15 3:16 p.m.8 views

CVE-2026-46483

Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tarVimuntar in runtime/autoload/tar.vim when decompressing .tgz archives on Unix-like systems. The function builds :!gunzip and :!gzip -d commands using shellescapetartail without the...

7CVSS5.9AI score0.00552EPSS
Exploits0References5
CVE
CVE
added 2026/05/15 2:57 p.m.33 views

CVE-2026-46483

Summary (CVE-2026-46483): Vim for Unix-like systems is vulnerable prior to version 9.2.0479 due to a command injection in tar#Vimuntar() within runtime/autoload/tar.vim when decompressing .tgz archives. The function constructs shell commands using shellescape(tartail) without the {special} flag, ...

7CVSS5.9AI score0.00552EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/15 2:57 p.m.8 views

CVE-2026-46483 Vim: Command injection in tar#Vimuntar via missing shellescape {special} flag

Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tarVimuntar in runtime/autoload/tar.vim when decompressing .tgz archives on Unix-like systems. The function builds :!gunzip and :!gzip -d commands using shellescapetartail without the...

3.6CVSS5.9AI score0.00552EPSS
Exploits0References3
Rows per page
Query Builder