Lucene search
K

5141 matches found

Nuclei
Nuclei
added yesterday118 views

Anyscale Ray 2.6.3 and 2.8.0 - Server-Side Request Forgery

The Ray Dashboard API is affected by a Server-Side Request Forgery SSRF vulnerability in the url parameter of the /logproxy API endpoint. The API does not perform sufficient input validation within the affected parameter and any HTTP or HTTPS URLs are accepted as valid. id: CVE-2023-48023 info:...

9.1CVSS7AI score0.35052EPSS
Exploits1References4
Nuclei
Nuclei
added yesterday66 views

Strapi Versions <=4.5.6 - Authentication Bypass

Strapi through 4.5.5 does not verify the access or ID tokens issued during the OAuth flow when the AWS Cognito login provider is used for authentication. A remote attacker could forge an ID token that is signed using the 'None' type algorithm to bypass authentication and impersonate any user that...

8.2CVSS7AI score0.04158EPSS
Exploits1References4
Cvelist
Cvelist
added 2 days ago33 views

CVE-2026-15508 Helicone ai-gateway AWS Metadata Service service.rs build_target_url server-side request forgery

A flaw has been found in Helicone ai-gateway up to 0.2.0-beta.30. This affects the function buildtargeturl of the file ai-gateway/src/dispatcher/service.rs of the component AWS Metadata Service. Executing a manipulation of the argument extractedpathandquery can lead to server-side request forgery...

6.5CVSS0.00333EPSS
Exploits0References5
CVE
CVE
added 2 days ago14 views

CVE-2026-15508

Helicone ai-gateway (up to 0.2.0-beta.30) is affected. The flaw is in the AWS Metadata Service component, specifically the build_target_url function in ai-gateway/src/dispatcher/service.rs, where manipulating extracted_path_and_query can trigger server-side request forgery. Exploitation is possib...

6.5CVSS6.3AI score0.00333EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2 days ago7 views

PT-2026-57575

A flaw has been found in Helicone ai-gateway up to 0.2.0-beta.30. This affects the function build target url of the file ai-gateway/src/dispatcher/service.rs of the component AWS Metadata Service. Executing a manipulation of the argument extracted path and query can lead to server-side request...

6.5CVSS6.3AI score0.00333EPSS
Exploits0References7
Chainguard
Chainguard
added 4 days ago6 views

GHSA-9VCR-P3RJ-Q5Q6 vulnerabilities

Vulnerabilities for packages: tkn, cloudbeat, tekton-chains, trivy-operator-fips, crossplane, kubescape-server, kyverno-notation-aws, kubescape-server-fips, tflint, zarf, teleport, kubescape, kyverno-fips, spire-server-fips, gitsign, neuvector-sigstore-interface, trivy, kyverno,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 5 days ago6 views

GHSA-FF52-PH69-CF7X vulnerabilities

Vulnerabilities for packages: kubernetes-csi-external-resizer-fips, sftpgo-plugin-pubsub, boring-registry, crossplane-provider-aws-emr, newrelic-k8s-metadata-injection-fips, amazon-eks-ami-fips, prometheus-redis-exporter-fips, crossplane-provider-aws-iot, stakater-reloader,...

6.1AI score
Exploits0
Wolfi
Wolfi
added 5 days ago5 views

GHSA-FF52-PH69-CF7X vulnerabilities

Vulnerabilities for packages: scorecard, percona-server-mongodb-operator, rancher, step-issuer, gitaly, cue, gatus, neuvector-scanner, gostatsd, prometheus, govulncheck, kyverno-policy-reporter-kyverno-plugin, pluto, aws-flb-cloudwatch, x509-certificate-exporter, pulumi-kubernetes-operator, nucle...

6.1AI score
Exploits0
Chainguard
Chainguard
added 5 days ago10 views

CVE-2026-31589 vulnerabilities

Vulnerabilities for packages: linux-aws...

9.8CVSS7.2AI score0.00444EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago7 views

CVE-2026-42505 vulnerabilities

Vulnerabilities for packages: kubernetes-csi-external-resizer-fips, sftpgo-plugin-pubsub, boring-registry, crossplane-provider-aws-emr, newrelic-k8s-metadata-injection-fips, amazon-eks-ami-fips, prometheus-redis-exporter-fips, crossplane-provider-aws-iot, stakater-reloader,...

5.3CVSS6.1AI score0.00419EPSS
Exploits0
Chainguard
Chainguard
added 6 days ago8 views

CVE-2026-53226 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

5.5CVSS6.1AI score0.00122EPSS
Exploits0
Chainguard
Chainguard
added 6 days ago6 views

CVE-2026-53162 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

7.8CVSS6.1AI score0.00136EPSS
Exploits0
Chainguard
Chainguard
added 6 days ago7 views

CVE-2026-53151 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

9.8CVSS6.1AI score0.00497EPSS
Exploits0
Chainguard
Chainguard
added 6 days ago7 views

CVE-2026-53187 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

7.1CVSS6.1AI score0.00129EPSS
Exploits0
Chainguard
Chainguard
added 6 days ago7 views

CVE-2026-53179 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

7.1CVSS6.1AI score0.00131EPSS
Exploits0
Chainguard
Chainguard
added 6 days ago8 views

CVE-2026-53211 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

5.5CVSS6.1AI score0.00126EPSS
Exploits0
Chainguard
Chainguard
added 6 days ago8 views

GHSA-VCCQ-H5J4-92QR vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

6.1AI score
Exploits0
Chainguard
Chainguard
added 6 days ago7 views

GHSA-VG6G-9H68-878W vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

6.1AI score
Exploits0
Chainguard
Chainguard
added 6 days ago6 views

GHSA-VHJQ-V866-4C7F vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

6.1AI score
Exploits0
Chainguard
Chainguard
added 6 days ago7 views

GHSA-FP35-JCPC-9WWG vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-qemu, linux-gcp, linux-azure, linux-aws, linux-vmware...

6.1AI score
Exploits0
Rows per page
Query Builder