Lucene search
K

4447 matches found

Chainguard
Chainguard
added 2025/12/17 1:23 p.m.4 views

GHSA-R6J8-C6R2-37RR vulnerabilities

Vulnerabilities for packages: node-feature-discovery, azuredisk-csi, emissary, node-feature-discovery-fips, eks-distro-fips, blob-csi, argo-cd, blob-csi-fips, nodetaint, azuredisk-csi-fips, cephcsi-fips, ip-masq-agent, mesosphere-vsphere-csi, kubernetes-csi-driver-nfs-fips, volcano,...

5.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/12/17 12:19 p.m.6 views

webkit: WebKitGTK: Remote user-assisted information disclosure via file drag-and-drop

A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...

7.4CVSS5.8AI score0.00282EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 6:13 a.m.5 views

webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash

A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper bounds checking and result in an unexpected process crash...

4.3CVSS6AI score0.01378EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 4:58 a.m.4 views

webkit: WebKitGTK: Remote user-assisted information disclosure via file drag-and-drop

A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...

7.4CVSS5.8AI score0.00282EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 4:58 a.m.5 views

webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling...

4.3CVSS5.7AI score0.0065EPSS
Exploits0References5
Redos
Redos
added 2025/12/17 12:0 a.m.5 views

ROS-20251217-7313

A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS7.5AI score0.00443EPSS
Exploits1
Redos
Redos
added 2025/12/17 12:0 a.m.6 views

ROS-20251217-7310

A vulnerability in Mozilla Firefox and Firefox ESR browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to conduct spoofing attacks...

3.4CVSS6.5AI score0.00226EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/12/16 10:15 p.m.4 views

CVE-2025-53618

An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality of Grassroot DICOM 3.024. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.The function grayscaleconvert is called base...

9.1CVSS5.9AI score0.00214EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/12/16 2:48 p.m.2 views

CVE-2025-8114 affecting package libssh for versions less than 0.10.6-5

CVE-2025-8114 affecting package libssh for versions less than 0.10.6-5. A patched version of the package is available...

4.7CVSS6.9AI score0.00217EPSS
Exploits0
Oracle linux
Oracle linux
added 2025/12/16 12:0 a.m.7 views

keylime security update

7.12.1-11.3 - Registrar allows identity takeover via duplicate UUID registration Resolves: RHEL-130760 7.12.1-11.2 - Properly fix the malformed certificate workaround Resolves: RHEL-111244...

8.2CVSS7.2AI score0.0038EPSS
Exploits0
Redos
Redos
added 2025/12/16 12:0 a.m.3 views

ROS-20251216-7306

Vulnerability in gnuplot related to insufficient checking for unusual or exceptional states. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service...

6.2CVSS6.8AI score0.00181EPSS
Exploits0
Redos
Redos
added 2025/12/16 12:0 a.m.2 views

ROS-20251216-7305

Vulnerability in gnuplot related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

6.2CVSS6.7AI score0.00184EPSS
Exploits0
Redos
Redos
added 2025/12/16 12:0 a.m.4 views

ROS-20251216-7349

A vulnerability in the Gimp image processing library is related to writing beyond buffer boundaries. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by loading a specially crafted ICNS file...

7.8CVSS8AI score0.00371EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/15 4:3 p.m.5 views

CVE-2025-31160 affecting package atop for versions less than 2.9.0-2

CVE-2025-31160 affecting package atop for versions less than 2.9.0-2. A patched version of the package is available...

2.9CVSS6.9AI score0.0019EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/15 4:3 p.m.3 views

CVE-2025-40331 affecting package kernel for versions less than 6.6.117.1-1

CVE-2025-40331 affecting package kernel for versions less than 6.6.117.1-1. An upgraded version of the package is available that resolves this issue...

6.8AI score0.00201EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/15 4:3 p.m.2 views

CVE-2025-40240 affecting package kernel for versions less than 6.6.117.1-1

CVE-2025-40240 affecting package kernel for versions less than 6.6.117.1-1. An upgraded version of the package is available that resolves this issue...

6.8AI score0.00177EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/15 4:3 p.m.3 views

CVE-2025-40040 affecting package kernel for versions less than 6.6.117.1-1

CVE-2025-40040 affecting package kernel for versions less than 6.6.117.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.8AI score0.00338EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/15 4:3 p.m.4 views

CVE-2025-40343 affecting package kernel for versions less than 6.6.117.1-1

CVE-2025-40343 affecting package kernel for versions less than 6.6.117.1-1. An upgraded version of the package is available that resolves this issue...

6.8AI score0.00197EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/15 4:3 p.m.4 views

CVE-2025-40321 affecting package kernel for versions less than 6.6.117.1-1

CVE-2025-40321 affecting package kernel for versions less than 6.6.117.1-1. An upgraded version of the package is available that resolves this issue...

6.8AI score0.00168EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/12/15 4:3 p.m.2 views

CVE-2025-40178 affecting package kernel for versions less than 6.6.117.1-1

CVE-2025-40178 affecting package kernel for versions less than 6.6.117.1-1. An upgraded version of the package is available that resolves this issue...

6.8AI score0.00188EPSS
Exploits0
Rows per page
Query Builder