Lucene search
K

4 matches found

CVE
CVE
added 2026/06/10 5:34 p.m.16 views

CVE-2026-50570

Fission prior to v1.25.0 allowed tenant-created Function/Environment CRDs to request securityContext.capabilities.add: ["SYS_TIME"] despite a fixed denylist (SYS_ADMIN, NET_ADMIN, SYS_PTRACE, SYS_MODULE, DAC_READ_SEARCH, DAC_OVERRIDE). The validation/merge-layer sanitization did not block CAP_SYS...

8.5CVSS5.5AI score0.00274EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2018/06/20 12:0 a.m.5 views

PT-2018-3864

Name of the Vulnerable Software and Affected Versions NTP version 4.2.8p11 Eltex ESR-200 affected versions not specified NTP affected versions not specified Description The issue is related to the implementation of the NTP protocol, which can lead to security restrictions being bypassed. An...

9.8CVSS7.9AI score0.2985EPSS
Exploits14References90
Positive Technologies
Positive Technologies
added 2018/03/04 12:0 a.m.3 views

PT-2018-2210 · Ntp +5 · Ntp +5

Name of the Vulnerable Software and Affected Versions: ntp versions 4.2.8p4 through 4.2.8p10 Description: The issue is related to errors in processing input data in the ntpd implementation of the NTP protocol. Exploitation of this issue can allow a remote attacker to cause a denial of service by...

9.8CVSS6.3AI score0.2985EPSS
Exploits15References89
Positive Technologies
Positive Technologies
added 2016/04/28 12:0 a.m.5 views

PT-2016-3321 · Ntp +5 · Ntpd +7

Name of the Vulnerable Software and Affected Versions: ntpd versions prior to 4.2.8p4 NTPsec versions prior to a5fb34b9cc89b92a8fef2f459004865c93bb7f92 Description: A malicious authenticated peer can exploit an issue in the clock selection algorithm to modify a victim's clock. The issue is relate...

9.8CVSS6.4AI score0.97549EPSS
Exploits61References173
Rows per page
Query Builder