Lucene search
K

228 matches found

Chainguard
Chainguard
added 5 days ago5 views

GHSA-Q4H4-GMJ2-QVW2 vulnerabilities

Vulnerabilities for packages: crossplane-provider-aws-rds, kueue-fips, crossplane-provider-aws-secretsmanager, crossplane-provider-aws-s3-fips, agentbeat-fips, crossplane-provider-azure-storagesync, crossplane-provider-aws-dynamodb, crossplane-provider-aws-route53resolver,...

5.8AI score
Exploits0
NVD
NVD
added 5 days ago8 views

CVE-2026-57876

An unauthenticated out-of-bounds write vulnerability exists in onvif.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when processing HTTP request body data. A remote attacker may exploit this vulnerability by sending a...

7.5CVSS0.00313EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: netconsole: The sumutex should be acquired before navigating the configs hierarchy. There is a race between operations that iterate over the cgchildren list and concurrent additions/removals of userdata items through configfs. Th...

5.3AI score0.00148EPSS
Exploits0References1
OSV
OSV
added 2026/06/04 9:35 a.m.4 views

MINI-22CM-JR63-CG4R

Bulletin has no description...

5.3CVSS6.7AI score0.00502EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/20 7:17 p.m.9 views

GHSA-CRHJ-59GH-8X96 vulnerabilities

Vulnerabilities for packages: argo-events, zot, guac, argo-workflows-fips, google-osconfig-agent, pulumi-language-dotnet, kaniko, goreleaser, trivy-operator, trivy-fips, kyverno-fips, syft-fips, zarf, gitaly-fips, mapotf, skaffold-fips, coder, external-secrets-operator-fips, redpanda-console,...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/15 7:17 a.m.9 views

GHSA-7RMH-48MX-2VWC vulnerabilities

Vulnerabilities for packages: cg...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/15 7:17 a.m.9 views

GHSA-7C37-GX6W-8VC5 vulnerabilities

Vulnerabilities for packages: cg...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/15 7:17 a.m.20 views

CVE-2026-44310 vulnerabilities

Vulnerabilities for packages: cg...

5.4CVSS5.8AI score0.00111EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/15 7:17 a.m.16 views

CVE-2026-44309 vulnerabilities

Vulnerabilities for packages: cg...

5.3CVSS5.8AI score0.00119EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/14 7:17 a.m.8 views

GHSA-M3XC-H892-GGX6 vulnerabilities

Vulnerabilities for packages: terragrunt, rancher-fleet-fips, upwind-agent, syft, argo-cd-fips, cerbos, chainloop-cli, seaweedfs-rocksdb, kyverno-fips, seaweedfs-rocksdb-fips, syft-fips, gitlab-rails-ce-fips, cg, argo-cd, skaffold-fips, gitaly, telegraf, rancher-fleet, teleport, scorecard,...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/14 7:17 a.m.9 views

CVE-2026-44740 vulnerabilities

Vulnerabilities for packages: terragrunt, rancher-fleet-fips, upwind-agent, syft, argo-cd-fips, cerbos, chainloop-cli, seaweedfs-rocksdb, kyverno-fips, seaweedfs-rocksdb-fips, syft-fips, gitlab-rails-ce-fips, cg, argo-cd, skaffold-fips, gitaly, telegraf, rancher-fleet, teleport, scorecard,...

6.5CVSS5.8AI score0.00295EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/08 1:49 p.m.13 views

CVE-2026-41507 Remote Code Execution (RCE) via String Literal Injection into math-codegen

math-codegen generates code from mathematical expressions. Prior to version 0.4.3, string literal content passed to cg.parse is injected verbatim into a new Function body without sanitization. This allows an attacker to execute arbitrary system commands when user-controlled input reaches the...

9.8CVSS6.1AI score0.00393EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/05/05 6:33 p.m.9 views

arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +29 more potentially affected by CVE-2026-5766 via django (>=5.2.0 <=5.2.13)

django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-5766 Source advisory: OSV:GHSA-W26R-RMM8-9C29...

6.3CVSS5.4AI score0.00423EPSS
Exploits0
OSV
OSV
added 2026/04/17 10:31 p.m.7 views

GHSA-P6X5-P4XF-CC4R Remote Code Execution (RCE) via String Literal Injection into math-codegen

Impact String literal content passed to cg.parse is injected verbatim into a new Function body without sanitization. This allows an attacker to execute arbitrary system commands when user-controlled input reaches the parser. Any application exposing a math evaluation endpoint where user input flo...

9.8CVSS6.1AI score0.00393EPSS
Exploits0References6
vulnersOsv
vulnersOsv
added 2026/04/07 3:30 p.m.10 views

arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +29 more potentially affected by CVE-2026-3902 via django (>=5.2.0 <=5.2.12)

django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-3902 Source advisory: OSV:GHSA-MVFQ-GGXM-9MC5...

7.5CVSS5.4AI score0.00436EPSS
Exploits0
OSV
OSV
added 2026/03/16 7:45 p.m.2 views

MINI-V794-PHG5-CFCG

Bulletin has no description...

7CVSS7AI score0.00157EPSS
Exploits0
Chainguard
Chainguard
added 2026/02/06 7:17 a.m.9 views

CVE-2026-25121 vulnerabilities

Vulnerabilities for packages: chainctl, dagdotdev, cg, amazon-ssm-agent...

7.5CVSS5.8AI score0.00369EPSS
Exploits0
Chainguard
Chainguard
added 2026/02/06 7:17 a.m.9 views

CVE-2026-25122 vulnerabilities

Vulnerabilities for packages: chainctl, dagdotdev, cg, amazon-ssm-agent...

5.5CVSS5.8AI score0.00106EPSS
Exploits0
Chainguard
Chainguard
added 2026/02/06 7:17 a.m.2 views

GHSA-5G94-C2WX-8PXW vulnerabilities

Vulnerabilities for packages: chainctl, dagdotdev, cg, amazon-ssm-agent...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/02/06 7:17 a.m.2 views

GHSA-6P9P-Q6WH-9J89 vulnerabilities

Vulnerabilities for packages: chainctl, dagdotdev, cg, amazon-ssm-agent...

5.8AI score
Exploits0
Rows per page
Query Builder