Lucene search
K

7129 matches found

CVE
CVE
added yesterday34 views

CVE-2026-45077

CVE-2026-45077 concerns Symfony’s server:log listener (part of Symfony\Bridge\Monolog) which binds to 0.0.0.0:9911 by default and processes each frame with unserialize(base64_decode($message)) without authentication or an allowed-classes allowlist. This permits any reachable host to submit attack...

8.6CVSS6.1AI score0.01261EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added yesterday9 views

kernel: net: bridge: use a stable FDB dst snapshot in RCU readers

A flaw was found in the Linux kernel. Inconsistent handling of local Forwarding Database FDB entries in the bridge networking component's RCU Read-Copy-Update readers can lead to a null-pointer dereference. A local attacker could exploit this by triggering a concurrent update to an FDB entry,...

5.5CVSS6AI score0.00123EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added yesterday9 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.5AI score0.00125EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added yesterday4 views

kernel: net: bridge: use a stable FDB dst snapshot in RCU readers

A flaw was found in the Linux kernel. Inconsistent handling of local Forwarding Database FDB entries in the bridge networking component's RCU Read-Copy-Update readers can lead to a null-pointer dereference. A local attacker could exploit this by triggering a concurrent update to an FDB entry,...

5.5CVSS6AI score0.00123EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added yesterday4 views

Adobe Bridge 15.1.5 < 15.1.6 / 16.x < 16.0.4 Multiple Vulnerabilities (APSB26-81)

The version of Adobe Bridge installed on the remote Windows host is prior to 15.1.6 or 16.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb26-81 advisory. - Out-of-bounds Write CWE-787 potentially leading to Arbitrary code execution CVE-2026-48311,...

7.8CVSS6.4AI score
Exploits0References7
Tenable Nessus
Tenable Nessus
added yesterday3 views

Adobe Bridge 15.1.5 < 15.1.6 / 16.x < 16.0.4 Multiple Vulnerabilities (APSB26-81)

The version of Adobe Bridge installed on the remote macOS or Mac OS X host is prior to 15.1.6 or 16.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb26-81 advisory. - Out-of-bounds Write CWE-787 potentially leading to Arbitrary code execution CVE-2026-48311,...

7.8CVSS6.4AI score
Exploits0References7
RedHat Linux
RedHat Linux
added 2 days ago5 views

kernel: net: bridge: use a stable FDB dst snapshot in RCU readers

A flaw was found in the Linux kernel. Inconsistent handling of local Forwarding Database FDB entries in the bridge networking component's RCU Read-Copy-Update readers can lead to a null-pointer dereference. A local attacker could exploit this by triggering a concurrent update to an FDB entry,...

5.5CVSS6AI score0.00123EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2 days ago2 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.2AI score0.00132EPSS
Exploits17References6
Nuclei
Nuclei
added 2 days ago133 views

Micro Focus Operations Bridge Manager <=2020.05 - Remote Code Execution

Micro Focus Operations Bridge Manager in versions 2020.05 and below is vulnerable to remote code execution via UCMDB. The vulnerability allows remote attackers to execute arbitrary code on affected installations of Data Center Automation. An attack requires network access and authentication as a...

8.8CVSS7.6AI score0.7699EPSS
Exploits6References5
Tenable Nessus
Tenable Nessus
added 2 days ago6 views

Ubuntu 18.04 LTS : Linux kernel (AWS) vulnerabilities (USN-8530-1)

"The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8530-1 advisory. It was discovered that the Linux kernel did not properly handle shared page fragments during socket buffer operations, collectively known as Dirty Frag....

9.8CVSS6.9AI score0.93235EPSS
Exploits42References23
Ubuntu
Ubuntu
added 5 days ago6 views

USN-8529-1: Linux kernel vulnerabilities

It was discovered that a logic flaw existed in the XFRM ESP-in-TCP subsystem in the Linux kernel when handling socket buffer fragments. This flaw is known as Fragnesia. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-43503 Several security issues...

9.8CVSS6.9AI score0.00563EPSS
Exploits11
Veracode
Veracode
added 5 days ago6 views

Improper Certificate Validation

Coder is vulnerable to Improper Certificate Validation. The vulnerability is due to the AI Bridge Proxy aibridgeproxyd creating a default HTTPS transport with InsecureSkipVerify enabled when no upstream proxy is configured, which allows an on-path man-in-the-middle attacker to present a forged TL...

7.4CVSS6.1AI score0.00258EPSS
Exploits0References8Affected Software2
Tenable Nessus
Tenable Nessus
added 5 days ago8 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2026-2535)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Input: alps - fix use-after-free bugs caused by dev3registerworkCVE-2025-68822 ext4: reject mount if bigalloc with sfirstdatablock !=...

9.8CVSS6.9AI score0.0138EPSS
Exploits15References167
Tenable Nessus
Tenable Nessus
added 5 days ago9 views

Coder 2.30.x < 2.32.7 / 2.33.x < 2.33.8 / 2.34.x < 2.34.2 AI Bridge Proxy TLS Verification Bypass

The version of Coder installed on the remote host is 2.30.x prior to 2.32.7, 2.33.x prior to 2.33.8, or 2.34.x prior to 2.34.2. It is, therefore, affected by a vulnerability. The AI Bridge Proxy skips TLS certificate verification in the default configuration. The proxy created a goproxy server...

7.4CVSS6.1AI score0.00258EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 5 days ago11 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2026-2595)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Input: alps - fix use-after-free bugs caused by dev3registerworkCVE-2025-68822 ext4: reject mount if bigalloc with sfirstdatablock !=...

9.8CVSS6.9AI score0.0138EPSS
Exploits15References167
NVD
NVD
added 6 days ago12 views

CVE-2026-59726

Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed the MCP bridge POST /mcp and POST /mcp/:group endpoints without authentication, allowing an unauthenticated network attacker to invoke tools/call to terminalexecute, obtain...

10CVSS0.00442EPSS
Exploits0References4
NVD
NVD
added 6 days ago10 views

CVE-2026-58378

Allwinner H616 TV Box TV98 has ADB enabled and exposed to the network on production. An attacker could request for ADB authorization and gain root level privileges if the victim allows access...

8.8CVSS0.00242EPSS
Exploits0References2
CVE
CVE
added 6 days ago14 views

CVE-2026-58378

CVE-2026-58378 affects the Allwinner H616 TV Box TV98 where ADB is enabled and exposed on production to the network. The vulnerability can allow an attacker to request ADB authorization and obtain root privileges if the user authorizes access. Public metrics show a high severity (CVSS v3.1/4.0 ba...

8.8CVSS6AI score0.00242EPSS
Exploits0References2
EUVD
EUVD
added 6 days ago7 views

EUVD-2026-42661

Allwinner H616 TV Box TV98 has ADB enabled and exposed to the network on production. An attacker could request for ADB authorization and gain root level privileges if the victim allows access...

8.8CVSS6AI score0.00242EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 6 days ago6 views

CVE-2026-59726

Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed the MCP bridge POST /mcp and POST /mcp/:group endpoints without authentication, allowing an unauthenticated network attacker to invoke tools/call to terminalexecute, obtain...

10CVSS6AI score0.00442EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder