Lucene search
K

476 matches found

SUSE CVE
SUSE CVE
added 2026/05/07 2:21 a.m.17 views

SUSE CVE-2026-31748

In the Linux kernel, the following vulnerability has been resolved: comedi: medaq: Fix potential overrun of firmware buffer me2600xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format. ...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References3
CVE
CVE
added 2026/05/06 11:28 a.m.20 views

CVE-2026-43263

The CVE-2026-43263 entry concerns the Linux kernel chips-media wave5 driver. The vulnerability arises when multiple driver instances are created and destroyed, causing many interrupts and removal of decoder structures. The shared vpu_instance structure is not protected by a lock, allowing a poten...

7.8CVSS5.8AI score0.00119EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/05 10:19 p.m.11 views

ciguard: discover_pipeline_files follows symlinks out of scan root

Summary The discoverpipelinefiles function in src/ciguard/discovery.py introduced in v0.8.0 and used by the MCP scanrepo tool shipped in v0.8.1 walks a directory tree following symlinks, with cycle protection via tracking visited resolved paths. An attacker who can plant a symlink in a directory...

3.2CVSS5.8AI score0.00158EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/05/05 10:18 p.m.17 views

GHSA-JRM4-4PCF-4763 ciguard: Container image runs as root (no USER directive)

Summary The published ghcr.io/jo-jo98/ciguard container image inherits the default root user because the Dockerfile lacks a USER directive. ciguard is a static analyser with no need for root privileges; running as root inside a container makes any future container-runtime escape CVE more impactfu...

3CVSS5.8AI score0.00122EPSS
Exploits0References5
Snyk
Snyk
added 2026/05/04 8:11 p.m.13 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the JoinWorkflowSpec process. An attacker can gain unauthorized access to host networking, override service account assignments, modify pod security contexts, add tolerations, or enable service account token...

8.6CVSS5.8AI score0.00424EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.12 views

PT-2026-36924

ITEMS ADDED: Filters Add filter for Atmos PM-5173 Filters Add filter for audio layout PM-5118 Filters Add filters for video, audio, and subtitle codecs PM-5117 Metadata Add support for RottenTomatoes audience and average ratings to Nfo parser PM-5176 Metadata Detect Dolby Atmos PM-4004 Metadata...

5.8AI score
Exploits0References2
EUVD
EUVD
added 2026/05/01 2:14 p.m.11 views

EUVD-2026-26561

In the Linux kernel, the following vulnerability has been resolved: comedi: medaq: Fix potential overrun of firmware buffer me2600xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format. ...

5.8AI score0.00129EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/01 2:14 p.m.32 views

CVE-2026-31747 comedi: me4000: Fix potential overrun of firmware buffer

In the Linux kernel, the following vulnerability has been resolved: comedi: me4000: Fix potential overrun of firmware buffer me4000xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format...

0.00129EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.6 views

PT-2026-36383

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overrun can occur in the me2600 xilinx download function when loading firmware requested by request firmware. The function reads a data stream length into the file length variab...

7.8CVSS5.6AI score0.00129EPSS
Exploits0References19
Oracle linux
Oracle linux
added 2026/04/27 12:0 a.m.13 views

firefox security update

140.10.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.10.0-1 - Update to 140.10.0 ESR...

9.8CVSS5.2AI score0.04938EPSS
Exploits1
Rapid7 Blog
Rapid7 Blog
added 2026/04/24 8:17 p.m.10 views

Metasploit Wrap-Up 04/25/2026

Check Method Visibility Metasploit has supported check methods for many years now. It’s not always desirable to jump straight into exploiting a vulnerability but instead to determine if the target is vulnerable. Metasploit tries to be very conservative with classifying a target as “vulnerable”...

9.8CVSS9.1AI score0.33694EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011023)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011023 advisory. In the Linux kernel, the following vulnerability has been resolved: cassini: Fix a memory leak in the error handling path of casinitone cassaturnfirmwareinit allocat...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References4
CVE
CVE
added 2026/04/15 10:13 a.m.23 views

CVE-2026-33805

CVE-2026-33805 affects @fastify/reply-from <= v12.6.1 and @fastify/http-proxy

9CVSS5.8AI score0.00441EPSS
Exploits1References6Affected Software2
SUSE Linux
SUSE Linux
added 2026/04/07 2:18 p.m.5 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20260402T184258 2026-04-02T18:42:58Z jscPED-11136. Go CVE Numbering Authority IDs added or updated with aliases: GO-2026-4518 CVE-2026-32286 GHSA-jqcq-xjh3-6g23 GO-2026-4753 CVE-2026-33487 GHSA-479m-364c-43vc...

9.4CVSS6.5AI score0.60368EPSS
Exploits18References70
RedhatCVE
RedhatCVE
added 2026/04/03 11:2 p.m.5 views

CVE-2024-40849

A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia 15.1. An app may be able to break out of its sandbox...

7.5CVSS5.8AI score0.00232EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/02 6:11 p.m.15 views

CVE-2024-44219

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.1. A malicious application with root privileges may be able to access private information...

0.0034EPSS
Exploits0References1
CVE
CVE
added 2026/04/02 6:11 p.m.12 views

CVE-2024-44219

CVE-2024-44219 affects macOS Sequoia (15.1) where a permissions issue could allow a malicious application with root privileges to access private information. Public documents confirm the flaw and its fix in Sequoia 15.1; remediation is to upgrade to macOS 15.1 or later. The exact root cause is de...

7.5CVSS5.8AI score0.0034EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/03/27 8:52 p.m.18 views

CVE-2026-33903

Ella Core (private 5G core) is affected by CVE-2026-33903. Versions prior to 1.7.0 panic when processing a specially crafted NGAP LocationReport message, allowing an attacker to crash the process and cause service disruption for all connected subscribers. The fix is included in version 1.7.0, whi...

6.5CVSS5.9AI score0.00207EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/27 3:12 a.m.8 views

MAL-2026-2249 Malicious code in chai-as-added (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 121a09e21b10c98f705a02343e235a9800c57b33a81abf364a47c3af69b6ceb4 The package chai-as-added was found to contain malicious code. Source: ghsa-malware 8d5056d792b6ced90bb9fe5c9ebd1726cc6bd61554739bb67c933cf4f7f50840...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/27 3:12 a.m.4 views

Malicious code in chai-as-added (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 121a09e21b10c98f705a02343e235a9800c57b33a81abf364a47c3af69b6ceb4 The package chai-as-added was found to contain malicious code. Source: ghsa-malware 8d5056d792b6ced90bb9fe5c9ebd1726cc6bd61554739bb67c933cf4f7f50840...

5.8AI score
Exploits0References1
Rows per page
Query Builder