33950 matches found
JD Cloud JDCOS 注入漏洞
JD Cloud JDCOS is a cloud object storage service provided by JD.com, a Chinese e-commerce company. The version JD Cloud JDCOS 4.5.1.r4518 contains a vulnerability due to an injection flaw in the Service Interface component. This flaw stems from the function setiptvinfo in the file/jdcap, which...
PT-2026-36680
A security flaw has been discovered in YunaiV yudao-cloud up to 2026.01. This impacts the function getAccessToken of the file yudao-module-system-biz/src/main/java/io/github/ruoyi/common/oauth2/service/impl/OAuth2TokenServiceImpl.java. Performing a manipulation results in improper authentication...
yudao-cloud 注入漏洞
Yudao-Cloud is a backend management system developed by YunaiV’s individual developer. Versions of Yudao-Cloud prior to 2026.01 contained a injection vulnerability. This vulnerability originated from the function getDataBySQL in the file...
PT-2026-36679
Name of the Vulnerable Software and Affected Versions YunaiV yudao-cloud versions prior to 2026.01 Description A SQL injection issue exists in the getDataBySQL function within the file yudao-module-report-biz/src/main/java/io/github/ruoyi/report/service/impl/GoViewDataServiceImpl.java. This flaw...
yudao-cloud 授权问题漏洞
Yudao-Cloud is a backend management system developed by YunaiV’s individual developer. Versions of Yudao-Cloud prior to 2026.01 contained an authorization issue vulnerability. This vulnerability originated from the function getAccessToken in the file...
Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 访问控制错误漏洞
Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform is a power operation and maintenance cloud platform developed by Acrel Corporation. Version 1.3.0 of Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform contains an access control...
CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments
In this article 1. Vulnerability details 2. Mitigation and protection guidance 3. Microsoft Defender XDR detections 4. References 5. Learn more Microsoft Defender is investigating a high-severity local privilege escalation vulnerability CVE-2026-31431 affecting multiple major Linux distributions...
CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments
In this article 1. Vulnerability details 2. Mitigation and protection guidance 3. Microsoft Defender XDR detections 4. References 5. Learn more Microsoft Defender is investigating a high-severity local privilege escalation vulnerability CVE-2026-31431 affecting multiple major Linux distributions...
PT-2026-36670
Name of the Vulnerable Software and Affected Versions Apache Polaris version 1.4.0 Description Apache Polaris fails to properly escape namespace and table identifiers when constructing Common Expression Language CEL strings for Google Cloud Storage GCS Credential Access Boundaries CAB. This allow...
PT-2026-36671
Name of the Vulnerable Software and Affected Versions Apache Polaris versions prior to 1.4.1 Description Changing the write.metadata.path table property via an ALTER TABLE settings change allows a user to bypass the commit-time branch intended to revalidate storage locations. This defect enables...
Alibaba Cloud Linux 3 : 0087: cloud-kernel bugfix, enhancement and (ALINUX3-SA-2026:0087)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0087 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-31431: In the Linux kernel, the following...
GHSA-Q8HH-7XG8-PFVM vulnerabilities
Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...
GHSA-GGGW-8CQ2-45CP vulnerabilities
Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...
GHSA-FCFJ-3H7Q-75MQ vulnerabilities
Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...
GHSA-C947-XGXX-FJ67 vulnerabilities
Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...
GHSA-9H3V-WRPM-Q7M5 vulnerabilities
Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...
GHSA-879H-M867-CPJQ vulnerabilities
Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...
GHSA-5FX9-VHX9-34XX vulnerabilities
Vulnerabilities for packages: linux-vmware, linux-aws, linux-qemu, linux-gcp...
CVE-2026-31626 vulnerabilities
Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...
CVE-2026-31622 vulnerabilities
Vulnerabilities for packages: linux-aws, linux-gcp, linux-vmware, linux-qemu, linux-azure...