Lucene search
K

3008 matches found

RedHat Linux
RedHat Linux
added 17 hours ago4 views

os: golang: Go os.Root: Symlink following vulnerability allows directory traversal

A flaw was found in the os.Root functionality of Go on Unix systems. This vulnerability allows an attacker to bypass intended directory restrictions by crafting a path that ends with a symbolic link and a trailing slash. When a file is opened in os.Root with such a path, the symbolic link is...

7.8CVSS6AI score0.00181EPSS
Exploits0References8
Chainguard
Chainguard
added 4 days ago8 views

GHSA-V722-58F9-VCJ4 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-azure, linux-qemu, linux-gcp...

6.1AI score
Exploits0
Chainguard
Chainguard
added 4 days ago6 views

CVE-2026-53253 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-azure, linux-qemu, linux-gcp...

7.1CVSS6.1AI score0.00274EPSS
Exploits0
Chainguard
Chainguard
added 4 days ago5 views

GHSA-V68W-64JW-RFJJ vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

CVE-2026-53131 vulnerabilities

Vulnerabilities for packages: linux-aws, linux-qemu, linux-qemu-melange, linux-azure, linux-gcp, linux-vmware...

9.4CVSS6.1AI score0.00431EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/07/06 6:50 p.m.6 views

CVE-2026-55380

Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile.open read image dimensions from the GD 2.x header and stored them in self.size without calling Image.decompressionbombcheck, allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This iss...

7.5CVSS6AI score0.00361EPSS
Exploits1
Debian CVE
Debian CVE
added 2026/07/03 6:15 a.m.7 views

CVE-2026-8924

A flaw in curl’s cookie parsing logic allows a malicious HTTP server to set 'super cookies' that bypass the Public Suffix List check. This enables an attacker-controlled origin to inject cookies that curl subsequently scopes and transmits to unrelated third-party domains...

9.1CVSS6AI score0.00649EPSS
Exploits1
Debian CVE
Debian CVE
added 2026/07/02 4:6 p.m.6 views

CVE-2026-54886

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Erlang OTP ssh sshsftpd module allows an authenticated SFTP user to render an SFTP channel permanently unresponsive. The handledata/4 function in sshsftpd contains a catch-all clause that accepts channel data of any type. When...

5.3CVSS6AI score0.0033EPSS
Exploits0
Chainguard
Chainguard
added 2026/07/02 2:17 p.m.9 views

CVE-2024-52282 vulnerabilities

Vulnerabilities for packages: harvester, harvester-fips...

6.2CVSS6.1AI score0.00393EPSS
Exploits0
Chainguard
Chainguard
added 2026/07/02 2:17 a.m.16 views

GHSA-7H4P-RFFG-7823 vulnerabilities

Vulnerabilities for packages: vllm-openai-cuda-13.0, vllm-cuda-13.2, py3-vllm-cuda-12.4...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/07/01 8:21 p.m.13 views

CVE-2026-2032 vulnerabilities

Vulnerabilities for packages: firefox-esr...

4.3CVSS5.8AI score0.0015EPSS
Exploits0
Chainguard
Chainguard
added 2026/07/01 2:17 p.m.14 views

GHSA-RCXP-78CQ-8WG3 vulnerabilities

Vulnerabilities for packages: firefox-esr...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/07/01 2:17 p.m.19 views

GHSA-GXG5-574V-J5F6 vulnerabilities

Vulnerabilities for packages: firefox, firefox-esr...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/07/01 2:16 p.m.5 views

GHSA-RG37-6QFJ-MCGW vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/07/01 2:16 p.m.11 views

GHSA-6RRC-VWRV-CWXC vulnerabilities

Vulnerabilities for packages: firefox...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/07/01 2:16 p.m.13 views

GHSA-RVWP-7CCQ-MJ58 vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/07/01 2:16 p.m.7 views

GHSA-HWHG-7C6P-XFW2 vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/07/01 2:16 p.m.9 views

GHSA-999P-9MFM-FFQR vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Debian CVE
Debian CVE
added 2026/07/01 2:9 p.m.4 views

CVE-2026-14324

RAOP module accepts unbounded Content-Length values and does not check the pwarrayadd return...

6.5CVSS5.8AI score0.00175EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-13866

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to...

6.5CVSS6.1AI score0.00272EPSS
Exploits0References2
Rows per page
Query Builder