Lucene search
K

26 matches found

CVE
CVE
added yesterday10 views

CVE-2026-14614

The CVE-2026-14614 entry concerns Keycloak’s admin services, specifically the ClientResource component under FGAP v2. It describes a bypass where a delegated administrator can attach or remove hidden client scopes beyond their visibility/permission, potentially injecting unauthorized data or perm...

5.4CVSS5.9AI score
Exploits0References2
NVD
NVD
added 2026/03/16 7:16 p.m.3 views

CVE-2025-69196

FastMCP is the standard framework for building MCP applications. Prior to version 2.14.2, the server does not properly respect the resource parameter submitted by the client in the authorization and token request. Instead of issuing the token explicitly for the MCP server, the token is issued for...

7.4CVSS0.00358EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2026/02/03 7:17 a.m.5 views

urllib3: urllib3 Streaming API improperly handles highly compressed data

A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header e.g., gzip, deflate, br, or zstd. The library must read compressed data from the network and decompress it...

8.9CVSS5.9AI score0.00622EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/01/05 6:18 a.m.5 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/05 6:11 a.m.2 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2025/12/16 5:2 a.m.7 views

CVE-2025-14777

A flaw was found in Keycloak. An IDOR Broken Access Control vulnerability exists in the admin API endpoints for authorization resource management, specifically in ResourceSetService and PermissionTicketService. The system checks authorization against the resourceServer client ID provided in the A...

6CVSS5.8AI score0.00315EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/04 7:41 a.m.5 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/01 2:41 p.m.1 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/01 2:42 a.m.9 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/26 7:17 a.m.1 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/26 5:26 a.m.4 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/25 5:25 p.m.3 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/25 7:57 a.m.7 views

Low: Red Hat Security Advisory: xorg-x11-server security update

An update for xorg-x11-server is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

7.3CVSS7.4AI score0.00481EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/11/25 7:57 a.m.4 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/11 3:10 p.m.3 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/11 3:7 p.m.3 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/03 4:0 p.m.4 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/03 8:53 a.m.3 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/03 8:51 a.m.6 views

xorg: xwayland: Use-after-free in Xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS5.8AI score0.00267EPSS
Exploits0References5
OSV
OSV
added 2025/11/03 12:0 a.m.7 views

ALSA-2025:19489 Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

7.3CVSS6.8AI score0.00481EPSS
Exploits0References8
Rows per page
Query Builder