5833 matches found
EUVD-2026-34164
Concrete CMS below 9.5.2 is vulnerable to PHP Object Injection via unserialize calls in the Workflow, Form block, and File/Set components that lack the allowedclasses restriction. An unauthenticated attacker may trigger arbitrary PHP object instantiation if a malicious serialized payload has been...
Cockpit Web Console < 360 - Remote Code Execution
Cockpit's remote login feature passes user-supplied hostnames and usernames from the web interface to the SSH client without validation or sanitization. An attacker with network access to the Cockpit web service can craft a single HTTP request to the login endpoint that injects malicious SSH...
JSONPath Plus < 10.3.0 - Remote Code Execution
Versions of the package jsonpath-plus before 10.3.0 are vulnerable to Remote Code Execution RCE due to improper input sanitization. An attacker can execute aribitrary code on the system by exploiting the unsafe default usage of eval='safe' mode. Note: This is caused by an incomplete fix for...
CVE-2026-39821 affecting package git-lfs for versions less than 3.6.1-3
CVE-2026-39821 affecting package git-lfs for versions less than 3.6.1-3. A patched version of the package is available...
CVE-2026-41918
A vulnerability has been identified in RUGGEDCOM RST2428P 6GK6242-6PA00 All versions V4.0. The affected applications stores sensitive information in the browser cache when an authenticated user modify specific configurations. This could allow an authenticated attacker to access sensitive data...
EUVD-2026-33914
A vulnerability has been identified in RUGGEDCOM RST2428P 6GK6242-6PA00 All versions V4.0. The affected applications stores sensitive information in the browser cache when an authenticated user modify specific configurations. This could allow an authenticated attacker to access sensitive data...
CVE-2026-25681 affecting package kubernetes for versions less than 1.30.10-25
CVE-2026-25681 affecting package kubernetes for versions less than 1.30.10-25. A patched version of the package is available...
CVE-2026-39829 affecting package moby-engine for versions less than 25.0.3-18
CVE-2026-39829 affecting package moby-engine for versions less than 25.0.3-18. A patched version of the package is available...
CVE-2026-39835 affecting package kubernetes for versions less than 1.30.10-25
CVE-2026-39835 affecting package kubernetes for versions less than 1.30.10-25. A patched version of the package is available...
CVE-2026-39821 affecting package etcd for versions less than 3.5.30-2
CVE-2026-39821 affecting package etcd for versions less than 3.5.30-2. A patched version of the package is available...
CVE-2026-29181 affecting package etcd for versions less than 3.5.30-2
CVE-2026-29181 affecting package etcd for versions less than 3.5.30-2. A patched version of the package is available...
CVE-2026-25681 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-25681 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...
CVE-2026-39821 affecting package kata-containers for versions less than 3.19.1.kata3-3
CVE-2026-39821 affecting package kata-containers for versions less than 3.19.1.kata3-3. A patched version of the package is available...
CVE-2026-25680 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-25680 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...
CVE-2026-8466 affecting package rabbitmq-server for versions less than 3.13.7-4
CVE-2026-8466 affecting package rabbitmq-server for versions less than 3.13.7-4. A patched version of the package is available...
CVE-2026-25680 affecting package kubernetes for versions less than 1.30.10-25
CVE-2026-25680 affecting package kubernetes for versions less than 1.30.10-25. A patched version of the package is available...
CVE-2026-44283 affecting package etcd for versions less than 3.5.30-2
CVE-2026-44283 affecting package etcd for versions less than 3.5.30-2. An upgraded version of the package is available that resolves this issue...
CVE-2026-39827 affecting package kubernetes for versions less than 1.30.10-25
CVE-2026-39827 affecting package kubernetes for versions less than 1.30.10-25. A patched version of the package is available...
CVE-2026-39829 affecting package kubernetes for versions less than 1.30.10-25
CVE-2026-39829 affecting package kubernetes for versions less than 1.30.10-25. A patched version of the package is available...
CVE-2026-42506 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-42506 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...