Lucene search
K

33950 matches found

CNNVD
CNNVD
added 2026/05/03 12:0 a.m.11 views

JD Cloud JDCOS 注入漏洞

JD Cloud JDCOS is a cloud object storage service provided by JD.com, a Chinese e-commerce company. The version JD Cloud JDCOS 4.5.1.r4518 contains a vulnerability due to an injection flaw in the Service Interface component. This flaw stems from the function setiptvinfo in the file/jdcap, which...

6.5CVSS6.6AI score0.01158EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/03 12:0 a.m.8 views

PT-2026-36680

A security flaw has been discovered in YunaiV yudao-cloud up to 2026.01. This impacts the function getAccessToken of the file yudao-module-system-biz/src/main/java/io/github/ruoyi/common/oauth2/service/impl/OAuth2TokenServiceImpl.java. Performing a manipulation results in improper authentication...

7.5CVSS6.8AI score0.00414EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/03 12:0 a.m.9 views

yudao-cloud 注入漏洞

Yudao-Cloud is a backend management system developed by YunaiV’s individual developer. Versions of Yudao-Cloud prior to 2026.01 contained a injection vulnerability. This vulnerability originated from the function getDataBySQL in the file...

6.5CVSS6.7AI score0.00196EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/03 12:0 a.m.11 views

PT-2026-36679

Name of the Vulnerable Software and Affected Versions YunaiV yudao-cloud versions prior to 2026.01 Description A SQL injection issue exists in the getDataBySQL function within the file yudao-module-report-biz/src/main/java/io/github/ruoyi/report/service/impl/GoViewDataServiceImpl.java. This flaw...

6.5CVSS6.9AI score0.00196EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/03 12:0 a.m.8 views

yudao-cloud 授权问题漏洞

Yudao-Cloud is a backend management system developed by YunaiV’s individual developer. Versions of Yudao-Cloud prior to 2026.01 contained an authorization issue vulnerability. This vulnerability originated from the function getAccessToken in the file...

7.5CVSS7.1AI score0.00414EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/03 12:0 a.m.9 views

Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 访问控制错误漏洞

Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform is a power operation and maintenance cloud platform developed by Acrel Corporation. Version 1.3.0 of Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform contains an access control...

6.5CVSS6.7AI score0.00224EPSS
Exploits0References2
Microsoft Secure
Microsoft Secure
added 2026/05/02 3:6 a.m.11 views

CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments

In this article 1. Vulnerability details 2. Mitigation and protection guidance 3. Microsoft Defender XDR detections 4. References 5. Learn more Microsoft Defender is investigating a high-severity local privilege escalation vulnerability CVE-2026-31431 affecting multiple major Linux distributions...

7.8CVSS6.5AI score0.96775EPSS
Exploits228
Microsoft Secure
Microsoft Secure
added 2026/05/02 3:6 a.m.8 views

CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments

In this article 1. Vulnerability details 2. Mitigation and protection guidance 3. Microsoft Defender XDR detections 4. References 5. Learn more Microsoft Defender is investigating a high-severity local privilege escalation vulnerability CVE-2026-31431 affecting multiple major Linux distributions...

7.8CVSS6.5AI score0.96775EPSS
Exploits228
Positive Technologies
Positive Technologies
added 2026/05/02 12:0 a.m.14 views

PT-2026-36670

Name of the Vulnerable Software and Affected Versions Apache Polaris version 1.4.0 Description Apache Polaris fails to properly escape namespace and table identifiers when constructing Common Expression Language CEL strings for Google Cloud Storage GCS Credential Access Boundaries CAB. This allow...

9.9CVSS5.8AI score0.00431EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2026/05/02 12:0 a.m.16 views

PT-2026-36671

Name of the Vulnerable Software and Affected Versions Apache Polaris versions prior to 1.4.1 Description Changing the write.metadata.path table property via an ALTER TABLE settings change allows a user to bypass the commit-time branch intended to revalidate storage locations. This defect enables...

9.9CVSS5.8AI score0.00364EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.18 views

Alibaba Cloud Linux 3 : 0087: cloud-kernel bugfix, enhancement and (ALINUX3-SA-2026:0087)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0087 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-31431: In the Linux kernel, the following...

7.8CVSS6AI score0.96775EPSS
Exploits228References2
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.5 views

GHSA-Q8HH-7XG8-PFVM vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.5 views

GHSA-GGGW-8CQ2-45CP vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.6 views

GHSA-FCFJ-3H7Q-75MQ vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.7 views

GHSA-C947-XGXX-FJ67 vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.5 views

GHSA-9H3V-WRPM-Q7M5 vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.7 views

GHSA-879H-M867-CPJQ vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.6 views

GHSA-5FX9-VHX9-34XX vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-aws, linux-qemu, linux-gcp...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.30 views

CVE-2026-31626 vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...

7.1CVSS5.8AI score0.00288EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/01 7:17 p.m.7 views

CVE-2026-31622 vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...

8.8CVSS5.8AI score0.00281EPSS
Exploits0
Rows per page
Query Builder