Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

RedhatCVE
RedhatCVEadded 2026/02/06 1:25 a.m.3 views

CVE-2026-25145

melange allows users to build apk packages using declarative pipelines. From version 0.14.0 to before 0.40.3, an attacker who can influence a melange configuration file e.g., through pull request-driven CI or build-as-a-service scenarios could read arbitrary files from the host system. The...

5.5CVSS5.4AI score0.00005EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/06 1:25 a.m.2 views

CVE-2026-24843

melange allows users to build apk packages using declarative pipelines. In version 0.11.3 to before 0.40.3, an attacker who can influence the tar stream from a QEMU guest VM could write files outside the intended workspace directory on the host. The retrieveWorkspace function extracts tar entries...

8.4CVSS5.3AI score0.00008EPSS
Exploits0References1
NVD
NVDadded 2026/02/04 8:16 p.m.1 views

CVE-2026-25143

melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before 0.40.3, an attacker who can influence inputs to the patch pipeline could execute arbitrary shell commands on the build host. The patch pipeline in pkg/build/pipelines/patch.yaml embeds...

7.8CVSS0.00014EPSS
Exploits0References2
NVD
NVDadded 2026/02/04 8:16 p.m.4 views

CVE-2026-24844

melange allows users to build apk packages using declarative pipelines. From version 0.3.0 to before 0.40.3, an attacker who can provide build input values, but not modify pipeline definitions, could execute arbitrary shell commands if the pipeline uses $vars. or $inputs. substitutions in...

8.8CVSS0.00012EPSS
Exploits0References2
CVE
CVEadded 2026/02/04 7:32 p.m.18 views

CVE-2026-25145

In melange, a path traversal vulnerability exists in LicensingInfos (pkg/config/config.go) where license-path is not validated to stay within the workspace. From version 0.14.0 up to before 0.40.3, an attacker who can influence a melange config (e.g., PR-driven CI or build‑as‑a‑service) could rea...

5.5CVSS5.5AI score0.00005EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2026/02/04 7:32 p.m.4 views

CVE-2026-25145 melange has a path traversal in license-path which allows reading files outside workspace

melange allows users to build apk packages using declarative pipelines. From version 0.14.0 to before 0.40.3, an attacker who can influence a melange configuration file e.g., through pull request-driven CI or build-as-a-service scenarios could read arbitrary files from the host system. The...

5.5CVSS5.5AI score0.00005EPSS
Exploits0References4
OSV
OSVadded 2026/02/04 7:32 p.m.2 views

CVE-2026-25143 melange affected by potential host command execution via license-check YAML mode patch pipeline

melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before 0.40.3, an attacker who can influence inputs to the patch pipeline could execute arbitrary shell commands on the build host. The patch pipeline in pkg/build/pipelines/patch.yaml embeds...

7.8CVSS6AI score0.00014EPSS
Exploits0References4
EUVD
EUVDadded 2026/02/04 7:32 p.m.3 views

EUVD-2026-5371

melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before 0.40.3, an attacker who can influence inputs to the patch pipeline could execute arbitrary shell commands on the build host. The patch pipeline in pkg/build/pipelines/patch.yaml embeds...

7.8CVSS6AI score0.00014EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/02/04 7:31 p.m.1 views

CVE-2026-24844 melange pipeline working-directory could allow command injection

melange allows users to build apk packages using declarative pipelines. From version 0.3.0 to before 0.40.3, an attacker who can provide build input values, but not modify pipeline definitions, could execute arbitrary shell commands if the pipeline uses $vars. or $inputs. substitutions in...

7.9CVSS5.8AI score0.00012EPSS
Exploits0References2
CVE
CVEadded 2026/02/04 7:31 p.m.12 views

CVE-2026-24844

CVE-2026-24844 affects melange. Affected: melange pipeline building in versions 0.3.0–0.40.2 (before 0.40.3). Vulnerability: in pipelines that use ${{vars.}} or ${{inputs. }} substitutions in working-directory, an attacker who can provide build input values (but cannot modify pipeline definitions...

8.8CVSS5.8AI score0.00012EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/02/04 7:31 p.m.18 views

CVE-2026-24843

melange (Chainguard) contains a local path traversal in the QEMU runner: the retrieveWorkspace tar extraction does not validate path boundaries, allowing an attacker who can influence the tar stream from a QEMU guest VM to write files outside the workspace. Affected versions are 0.11.3 up to befo...

8.4CVSS5.4AI score0.00008EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/04 7:31 p.m.2 views

CVE-2026-24843 melange QEMU runner could write files outside workspace directory

melange allows users to build apk packages using declarative pipelines. In version 0.11.3 to before 0.40.3, an attacker who can influence the tar stream from a QEMU guest VM could write files outside the intended workspace directory on the host. The retrieveWorkspace function extracts tar entries...

8.2CVSS5.4AI score0.00008EPSS
Exploits0References2
Snyk
Snykadded 2026/02/03 11:48 p.m.1 views

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection via the working-directory field when user-supplied input is embedded into shell scripts without proper quote escaping. An attacker can execute arbitrary shell commands by providing crafted build input values that are...

8.8CVSS6AI score0.00012EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/01/29 11:4 p.m.18 views

CVE-2026-1665 Command Injection in nvm via NVM_AUTH_HEADER in wget code path

A command injection vulnerability exists in nvm Node Version Manager versions 0.40.3 and below. The nvmdownload function uses eval to execute wget commands, and the NVMAUTHHEADER environment variable was not sanitized in the wget code path though it was sanitized in the curl code path. An attacke...

5.4CVSS0.0003EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/01/29 12:0 a.m.4 views

PT-2026-5371

Name of the Vulnerable Software and Affected Versions nvm versions 0.40.3 and below Description A command injection issue exists in nvm Node Version Manager. The nvm download function utilizes eval to execute wget commands. The NVM AUTH HEADER environment variable was not properly sanitized when...

5.4CVSS6.2AI score0.0003EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-26392

Malicious code in bioql PyPI...

9.1CVSS6.3AI score0.00106EPSS
Exploits0References4
OSV
OSVadded 2025/08/29 10:15 p.m.2 views

DEBIAN-CVE-2025-58068

Eventlet is a concurrent networking library for Python. Prior to version 0.40.3, the Eventlet WSGI parser is vulnerable to HTTP Request Smuggling due to improper handling of HTTP trailer sections. This vulnerability could enable attackers to, bypass front-end security controls, launch targeted...

9.1CVSS5.5AI score0.00106EPSS
Exploits0References1
NVD
NVDadded 2025/08/29 10:15 p.m.1 views

CVE-2025-58068

Eventlet is a concurrent networking library for Python. Prior to version 0.40.3, the Eventlet WSGI parser is vulnerable to HTTP Request Smuggling due to improper handling of HTTP trailer sections. This vulnerability could enable attackers to, bypass front-end security controls, launch targeted...

9.1CVSS0.00106EPSS
Exploits0References4
Snyk
Snykadded 2025/08/29 9:42 p.m.3 views

HTTP Request Smuggling

Overview eventlet is a Highly concurrent networking library Affected versions of this package are vulnerable to HTTP Request Smuggling via improper handling of HTTP trailer sections in the wsgi parser. An attacker can bypass front-end security controls, launch targeted attacks against active site...

9.1CVSS6.8AI score0.00106EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2025/08/29 9:12 p.m.4 views

CVE-2025-58068

Eventlet is a concurrent networking library for Python. Prior to version 0.40.3, the Eventlet WSGI parser is vulnerable to HTTP Request Smuggling due to improper handling of HTTP trailer sections. This vulnerability could enable attackers to, bypass front-end security controls, launch targeted...

9.1CVSS5.5AI score0.00106EPSS
Exploits0
Rows per page
Query Builder