Lucene search
K

3392 matches found

Chainguard
Chainguard
added 5 days ago5 views

CVE-2026-53181 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

5.5CVSS6.1AI score0.00128EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

CVE-2026-53185 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

7.8CVSS6.1AI score0.00102EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

CVE-2026-53189 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

7.8CVSS6.1AI score0.00138EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

CVE-2026-53195 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

7.8CVSS6.1AI score0.00153EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago7 views

CVE-2026-53196 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

6.8CVSS6.1AI score0.00284EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago8 views

CVE-2026-53147 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

8.1CVSS6.1AI score0.00283EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

CVE-2026-53149 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

7.1CVSS6.1AI score0.00126EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago8 views

CVE-2026-53205 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

7.1CVSS6.1AI score0.00131EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago9 views

CVE-2026-53198 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

8.8CVSS6.1AI score0.00466EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago9 views

GHSA-7Q5M-QV9W-C8XX vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

6.1AI score
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

GHSA-8CG3-6H68-W2CJ vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-qemu-melange, linux-qemu, linux-aws, linux-vmware, linux-azure...

6.1AI score
Exploits0
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-42068

An improper access check allows unauthorized users to create custom fields via webservices endpoints...

6.4CVSS6AI score0.00262EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added last week7 views

CVE-2026-13769

A flaw was found in AWS CLI. Overly permissive file permissions on Unix-like systems, where the umask has not been configured to restrict file permissions, may allow other local users on the same host to read credentials. This occurs when certain AWS CLI subcommands, such as aws codeartifact logi...

6.8CVSS5.9AI score0.00101EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added last week8 views

CVE-2026-56140

A flaw was found in the Apache Camel AWS SNS component camel-aws2-sns. An improper input validation vulnerability exists in the Sns2HeaderFilterStrategy due to a missing inbound filter rule. However, this component is producer-only, meaning it does not process external messages in a way that woul...

9.8CVSS5.9AI score0.00427EPSS
Exploits0References4
CVE
CVE
added 2026/07/06 8:16 a.m.12 views

CVE-2026-56140

CVE-2026-56140 describes an improper input validation in the Apache Camel AWS SNS component (camel-aws2-sns) due to a missing inbound filter in Sns2HeaderFilterStrategy. The Red Hat/NVD entries confirm the issue is a defense-in-depth hardening change with no known exploit path because camel-aws2-...

9.8CVSS6AI score0.00427EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/07/02 10:30 a.m.38 views

CVE-2026-54430 Server-Site Request Forgery in liboauth2

liboauth2 is vulnerable to Server-Side Request Forgery in oauth2josejwksawsalbresolve function. The AWS ALB verifier reads both signer and kid from the unverified JWT header. If signer matches the configured ARN, kid is appended to albbaseurl without URL encoding or path sanitization, and the HTT...

5.1CVSS0.00121EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/02 10:30 a.m.8 views

CVE-2026-54430

liboauth2 is vulnerable to Server-Side Request Forgery in oauth2josejwksawsalbresolve function. The AWS ALB verifier reads both signer and kid from the unverified JWT header. If signer matches the configured ARN, kid is appended to albbaseurl without URL encoding or path sanitization, and the HTT...

5.1CVSS5.8AI score0.00121EPSS
Exploits0References4
NVD
NVD
added 2026/06/30 11:16 a.m.6 views

CVE-2026-13316

A flaw has been found in foreman when HTTP parameters are modified in httpproxiescontroller and httpproxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component...

4.4CVSS0.00105EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/30 9:53 a.m.6 views

EUVD-2026-40281

A flaw has been found in foreman when HTTP parameters are modified in httpproxiescontroller and httpproxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component...

4.4CVSS5.7AI score0.00105EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 9:53 a.m.17 views

CVE-2026-13316

Foreman (HTTP proxies: http_proxies_controller, http_proxy) is affected by a flaw that allows SSRF, enabling access to cloud metadata services in AWS/GCP/Azure environments via modified HTTP parameters. Root cause involves unvalidated/test_url parameters in Foreman’s configuration paths. Impact i...

4.4CVSS5.7AI score0.00105EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder