CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/06/13 2:34 a.m.•25 views

CVE-2026-54229

Affects the abrt-dbus D-Bus service’s ChownProblemDir method. A race condition occurs when ChownProblemDir opens the dump directory with DD_OPEN_READONLY and then calls dd_chown to change ownership of all files to the caller’s UID, which succeeds even while post-create event handlers hold a write...

7CVSS5.3AI score0.00083EPSS

Tenable Nessus•added 2026/06/13 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2026-54229

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method. ChownProblemDir opens the dump directory with DDOPENREADONLY and calls ddcho...

7CVSS5.5AI score0.00083EPSS

Positive Technologies•added 2026/06/13 12:0 a.m.•14 views

PT-2026-49074

Name of the Vulnerable Software and Affected Versions abrt-dbus affected versions not specified Description A race condition exists in the ChownProblemDir method of the abrt-dbus D-Bus service. The ChownProblemDir method opens the dump directory using DD OPEN READONLY and executes dd chown to...

7CVSS5.2AI score0.00083EPSS

Exploits0References5

OSV•added 2026/06/10 5:16 a.m.•5 views

DEBIAN-CVE-2026-11837

A local privilege escalation vulnerability was found in the ansible.posix authorizedkey module. The module's keyfile function uses os.chown instead of os.lchown and opens files without ONOFOLLOW when managing SSH authorized keys. An unprivileged local user can pre-stage symbolic links in their...

OSV•added 2026/06/10 5:16 a.m.•3 views

UBUNTU-CVE-2026-11837

7.3CVSS5.4AI score0.00127EPSS

Exploits0References4

CVE•added 2026/06/10 5:3 a.m.•28 views

CVE-2026-11837

CVE-2026-11837 describes a local privilege escalation in the ansible.posix authorized_key module. The keyfile() function uses os.chown() instead of os.lchown() and opens files without O_NOFOLLOW when handling SSH authorized keys. An unprivileged local user can pre-stage symbolic links in their ~/...

Debian CVE•added 2026/06/10 5:3 a.m.•8 views

CVE-2026-11837

Vulnrichment•added 2026/06/10 5:3 a.m.•12 views

Exploits0

CVE-2026-11837 Ansible-collection-ansible-posix: ansible.posix authorized_key: local privilege escalation via symlink-following chown

Positive Technologies•added 2026/06/10 12:0 a.m.•14 views

PT-2026-48375

Name of the Vulnerable Software and Affected Versions ansible.posix affected versions not specified Description A local privilege escalation issue exists in the authorized key module. The keyfile function utilizes os.chown instead of os.lchown and opens files without the O NOFOLLOW flag when...

CNNVD•added 2026/06/09 12:0 a.m.•10 views

Exploits0References7

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, where the access mode flag is set using an OR operation instead of a replacement. This vulnerability may prevent...

7.7CVSS5.3AI score0.00121EPSS

RedhatCVE•added 2026/06/05 7:21 p.m.•7 views

CVE-2026-41231

Froxlor is open source server administration software. Prior to version 2.3.6, DataDump.add constructs the export destination path from user-supplied input without passing the $fixedhomedir parameter to FileDir::makeCorrectDir, bypassing the symlink validation that was added to all other...

7.5CVSS5.6AI score0.00414EPSS

Exploits1References1

SUSE CVE•added 2026/05/29 1:15 a.m.•16 views

SUSE CVE-2026-46195

In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parsesecdesc, buildsecdesc, and the chown path in idmodetocifsacl all add the server-supplied dacloffset to pntsd before proving a DACL header fits inside the returne...

5.5CVSS5.8AI score0.00539EPSS

Exploits0References3

RedhatCVE•added 2026/05/28 2:3 p.m.•11 views

CVE-2026-46195

A flaw was found in the Linux kernel's Server Message Block SMB client. A malicious server can exploit this vulnerability on 32-bit systems by providing a crafted dacloffset value. This can cause a pointer wrap, leading to the dereferencing of invalid Discretionary Access Control List DACL fields...

9.8CVSS5.5AI score0.00539EPSS

Exploits0References4

RedHat Linux•added 2026/05/28 1:35 p.m.•3 views

kernel: smb: client: validate dacloffset before building DACL pointers

9.8CVSS5.5AI score0.00539EPSS

Exploits0References5

ATTACKERKB•added 2026/05/28 9:36 a.m.•13 views

CVE-2026-46195

9.8CVSS5.8AI score0.00539EPSS

Exploits0References8Affected Software1

RedHat Linux•added 2026/05/28 8:47 a.m.•3 views

kernel: smb: client: validate dacloffset before building DACL pointers

9.8CVSS5.5AI score0.00539EPSS

Exploits0References5

EUVD•added 2026/05/13 6:30 p.m.•15 views

EUVD-2026-29919

The new upstream added a privileged D-Bus helper called plasmaloginauthhelper, which suffers from multiple issues, e.g.aA compromised plasmalogin service account can chown arbitrary files in the system...

7CVSS5.8AI score0.00134EPSS

Exploits0References4

CNNVD•added 2026/05/13 12:0 a.m.•7 views

Plasma Workspace 安全漏洞

Plasma Workspace is an open-source application developed by the KDE GitHub Mirror project. It serves to run various components required for a Plasma-based environment. Plasma Workspace has a security vulnerability that stems from multiple issues, which may allow an infected plasmalogin service...

7CVSS5.9AI score0.00134EPSS