Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2026/06/18 1:48 p.m.11 views

CVE-2026-12039 Docker Sandboxes network egress allowlist bypass via unfiltered DNS resolution

Docker Sandboxes sbx enforces an HTTP/S-only egress allowlist but does not apply it to DNS resolution: the per-network embedded DNS server forwards any queried name to the host resolver whenever the network is internet-connected, without consulting the policy. A workload inside a sandbox, which t...

5.7CVSS5.2AI score0.00103EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/18 12:0 a.m.25 views

PT-2026-50676

Name of the Vulnerable Software and Affected Versions Docker Sandboxes affected versions not specified Description Docker Sandboxes sbx fail to re-apply the ICMP egress authorizer to networks rebuilt from disk after a Docker daemon restart. This allows a restart-surviving sandbox to forward ICMP...

5.7CVSS6AI score0.00097EPSS
Exploits0References5
CVE
CVE
added 2025/09/24 7:48 p.m.36 views

CVE-2025-59824

The CVE CVE-2025-59824 affects Omni’s WireGuard-based SideroLink used to connect Omni to Talos machines. The issue: the WireGuard interface validates that the source IP matches the Talos peer IPv6 address but does not validate the destination address, meaning a malicious workload on the same Kube...

5.4CVSS6.7AI score0.00182EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 10:46 p.m.8 views

CVE-2022-36103

Talos Linux is a Linux distribution built for Kubernetes deployments. Talos worker nodes use a join token to get accepted into the Talos cluster. Due to improper validation of the request while signing a worker node CSR certificate signing request Talos control plane node might issue Talos API...

8.8CVSS6.1AI score0.00533EPSS
Exploits0
NVD
NVD
added 2022/09/13 5:15 p.m.16 views

CVE-2022-36103

Talos Linux is a Linux distribution built for Kubernetes deployments. Talos worker nodes use a join token to get accepted into the Talos cluster. Due to improper validation of the request while signing a worker node CSR certificate signing request Talos control plane node might issue Talos API...

8.8CVSS0.00533EPSS
Exploits0References3
Lenovo
Lenovo
added 2019/05/14 4:38 p.m.500 views

Microarchitectural Data Sampling (MDS) Side Channel Vulnerabilities - US

Lenovo Security Advisory: LEN-26696 Potential Impact: Information disclosure Severity: Medium Scope of Impact: Industry-wide CVE Identifier: CVE-2018-12126 - Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12127 - Microarchitectural Load Port Data Sampling MLPDS CVE-2018-12130 -...

4.7CVSS1.9AI score0.01553EPSS
Exploits0
Rows per page
Query Builder