1824 matches found
SUSE CVE-2026-23879
py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and decryption. Versions 1.1.2 and below contain an an arbitrary file write vulnerability, which allows symbolic links to be recreated outside the destination directory via crafted malicious...
SUSE CVE-2026-53488
unknown...
SUSE CVE-2026-48931
A flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...
SUSE CVE-2026-49860
Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, when a WebSocket connection was opened, Deno checked the destination hostname against --deny-net rules but did not re-check the IP addresses that hostname resolved to. An attacker-controlled script could use a specially...
SUSE CVE-2026-53537
unknown...
SUSE CVE-2026-54761
Traefik is an HTTP reverse proxy and load balancer. Prior to 3.6.21 and 3.7.5, there is a high severity vulnerability in Traefik's Kubernetes Gateway provider affecting the crossProviderNamespaces allowlist. For HTTPRoute rules that declare multiple WRR backendRefs, Traefik evaluates the allowlis...
SUSE CVE-2026-49854
unknown...
SUSE CVE-2026-49855
unknown...
SUSE CVE-2026-50269
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.0, attacker-controlled input included into multipart/payload headers can be used to modify a request to inject additional headers or similar. In the unlikely situation that an application is passing...
SUSE CVE-2026-47241
Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to 0.6.5 and 0.5.15, several Net::IMAP commands accept a raw string argument which is only validated to prevent CRLF injection and then sent verbatim. If this string is derived from user-controlled inpu...
SUSE CVE-2026-48487
unknown...
SUSE CVE-2026-45491
unknown...
SUSE CVE-2026-48785
unknown...
SUSE CVE-2026-21998
unknown...
SUSE CVE-2026-22004
unknown...
SUSE CVE-2026-22017
unknown...
SUSE CVE-2026-34270
unknown...
SUSE CVE-2026-34271
unknown...
SUSE CVE-2026-34304
unknown...
SUSE CVE-2026-34308
unknown...