Lucene search
K

848 matches found

Chainguard
Chainguard
added 2026/05/20 7:17 p.m.7 views

GHSA-M7CR-M3PV-HGRP vulnerabilities

Vulnerabilities for packages: cloudbeat-fips, bom, act, grype-db, argo-workflows-fips, gitaly, dagger, k9s, kaniko-fips, kaniko, steampipe, chainloop-cli, argo-cd-fips, teleport, flux-fips, argo-events, cerbos-fips, argocd-image-updater, kyverno-fips, src-fingerprint-fips, scorecard, apko-fips,...

5.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/05/20 2:0 p.m.32 views

kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation

A flaw was found in the Linux kernel. A use-after-free vulnerability exists in the traffic control actct path when it is incorrectly configured with non-ingress egress qdiscs queueing disciplines. This can allow a local user with specific privileges to trigger a kernel crash, leading to a denial ...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15

In the Linux kernel, the following vulnerability has been resolved: net/usb: kalmia: Do not pass actlen in the usbbulkmsg error path. syzbot reported that actlen in kalmiasendinitpacket is uninitialized when it is passed to the first usbbulkmsg error path. Jiri Pirko noted that it’s pointless to...

5.5CVSS5.2AI score0.00253EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/05/18 12:0 a.m.13 views

Not What You Asked For: Typographic Attacks in Household Robot Manipulation

Open-vocabulary embodied AI agents increasingly rely on vision-language models such as CLIP for object perception and task grounding. However, the shared embedding space that enables this flexibility introduces a structural vulnerability to typographic attacks, where printed text in a physical...

5.8AI score
Exploits0
hivepro
hivepro
added 2026/05/13 4:57 a.m.12 views

DORA Compliance Cybersecurity Guide for Finance

DORA Compliance Cybersecurity: A Practical Guide for Financial Services Teams DORA compliance cybersecurity is now a board-level priority for banks, insurers, investment firms, payment providers, and the ICT providers that support them. The Digital Operational Resilience Act shifts the conversati...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/07 8:21 p.m.10 views

CVE-2026-43577

OpenClaw before 2026.4.9 contains a file read vulnerability allowing attackers to bypass navigation guards through browser act/evaluate interactions. Attackers can pivot into the local CDP origin and create or read disallowed file:// pages despite direct navigation policy restrictions...

7.1CVSS5.8AI score0.00253EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2026/05/07 10:21 a.m.16 views

If a fake moustache can fool age checks, is the Online Safety Act working?

A report based on a survey by the UK’s Internet Matters shows that much of the responsibility for managing the online safety of children still falls on families. The Online Safety Act came into effect in July, 2025, and the report explores what has changed in the online lives of UK families since...

5.8AI score
Exploits0
HackRead
HackRead
added 2026/05/05 1:30 p.m.19 views

LuxSci Launches Enterprise-Grade HIPAA-Compliant Email Security for Mid-Sized Healthcare Organizations

Cambridge, MA, 5th May 2026, CyberNewswire...

5.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/05/04 10:20 p.m.13 views

kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation

A flaw was found in the Linux kernel. A use-after-free vulnerability exists in the traffic control actct path when it is incorrectly configured with non-ingress egress qdiscs queueing disciplines. This can allow a local user with specific privileges to trigger a kernel crash, leading to a denial ...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/04 9:46 p.m.8 views

kernel: Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation

A flaw was found in the Linux kernel. A use-after-free vulnerability exists in the traffic control actct path when it is incorrectly configured with non-ingress egress qdiscs queueing disciplines. This can allow a local user with specific privileges to trigger a kernel crash, leading to a denial ...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References5
Circl
Circl
added 2026/05/04 3:41 p.m.14 views

CERTFR-2026-ACT-020

creationtimestamp| type| source ---|---|--- 2026-05-04 15:41:45+00:00| seen| https://bsky.app/profile/infosecfr.skyfleet.blue/post/3mkzz4cqpnu2p 2026-05-04 15:42:42+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3mkzz5za2nx23 2026-05-04 15:42:46+00:00| seen|...

5.8AI score
Exploits0References3
The Hacker News
The Hacker News
added 2026/05/04 11:58 a.m.15 views

2026: The Year of AI-Assisted Attacks

On December 4, 2025, a 17-year-old was arrested in Osaka under Japan’s Unauthorized Access Prohibition Act. The young man had run malicious code to extract the personal data of over 7 million users of Kaikatsu Club, Japan's largest internet cafe chain. When asked, the young man shared his...

5.7AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/25 8:47 a.m.4 views

CVE-2026-31684

In the Linux kernel, the following vulnerability has been resolved: net: sched: actcsum: validate nested VLAN headers tcfcsumact walks nested VLAN headers directly from skb-data when an skb still carries in-payload VLAN tags. The current code reads vlan-hvlanencapsulatedproto and then pulls...

5.5CVSS5.3AI score0.00117EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/04/25 8:47 a.m.23 views

CVE-2026-31684

The CVE-2026-31684 issue is in the Linux kernel’s net/sched pathology (act_csum) where tcf_csum_act() reads nested VLAN headers directly from skb->data if the payload contains VLAN tags, and may read VLAN_HLEN bytes before guaranteeing the full header is present. The root cause is that the cod...

5.5CVSS5.5AI score0.00117EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/04/25 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the nested VLAN headers in actcsum not being linearly present. This vulnerability may lead to the...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References1
Wallarm Lab
Wallarm Lab
added 2026/04/24 7:15 a.m.11 views

The Governance Gap: How the EU AI Act Makes API Security a Compliance Imperative

Your legal team just handed you a 400-page document and said "figure out compliance." The EU AI Act is live, your organization falls under its scope, which is broader than many expect. Even non‑EU companies must comply if their AI systems are used, deployed, or produce effects within the European...

5.6AI score
Exploits0
EUVD
EUVD
added 2026/04/24 12:31 a.m.6 views

EUVD-2026-25322

OpenClaw before 2026.3.31 contains a time-of-check-time-of-use vulnerability in sandbox file operations that allows attackers to bypass fd-based defenses. Attackers can exploit check-then-act patterns in applypatch, remove, and mkdir operations to manipulate files between validation and execution...

5CVSS5.8AI score0.00088EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/23 9:57 p.m.4 views

CVE-2026-41338

OpenClaw before 2026.3.31 contains a time-of-check-time-of-use vulnerability in sandbox file operations that allows attackers to bypass fd-based defenses. Attackers can exploit check-then-act patterns in applypatch, remove, and mkdir operations to manipulate files between validation and execution...

5CVSS5.8AI score0.00088EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.10 views

PT-2026-34769

OpenClaw before 2026.3.31 contains a time-of-check-time-of-use vulnerability in sandbox file operations that allows attackers to bypass fd-based defenses. Attackers can exploit check-then-act patterns in apply patch, remove, and mkdir operations to manipulate files between validation and executio...

5CVSS5.8AI score0.00088EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013471)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013471 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: actmirred: use the backlog for mirred ingress The test Davide added in commit...

5.5CVSS5.6AI score0.00181EPSS
Exploits0References3
Rows per page
Query Builder